Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Transunion

Group: ransomed

Discovered by ransomware.live: 2023-08-23

Estimated attack date: 2023-08-23


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse cscglobal.com
MX Records
  • mxb-00030c01.gslb.pphosted.com.
  • mxa-00030c01.gslb.pphosted.com.
TXT Records
  • google-site-verification=fQhA9XihMKk3bEOWbFuMzvbMoIWn3VV_7dOql4BU31s
  • google-site-verification=X5Ss38uDZzpYOYbroWhar77PBX0xSubqDGv6m3VN0yg
  • pexip-ms-tenant-domain-verification=01b6fb5d-4a83-4054-bcf3-aa2fa78d1978
  • pexip-ms-tenant-domain-verification=value1,01b6fb5d-4a83-4054-bcf3-aa2fa78d1978
  • h1-domain-verification=QGQB36EeruNayG5fmBw7xT1xQYtEYuPsrn87wEduAjKHrpiJ
  • apple-domain-verification=9HLwYgyGueSb3wtq
  • google-site-verification=ephEuysFxsH6mMiqUJEMhaYAVozhGRfytMBUVhE668w
  • google-site-verification=4lDHDL1hlBdOKIql_1hMgPe0U7P6JMveRHTkpsgGH2Y
  • spf2.0/pra
  • 00d5w0000079ffteaq
  • atlassian-domain-verification=OhHXxTASP58PzZdtjRtShflj0LkhtrIoEKZcj36Cl8vr9mfTPrXbQ/E98t4RIU3g
  • krxDEe0X+yAqz66sAWq9wPUKp9Ez0DQQk8ktPqtZZl3Q3P+wvjDSgrvTzJg5JG7gCCQlKb6TdLXHrGyzR4M23Q==
  • miro-verification=807af6d442d45df78d20be0aebef9d41ce80af1f
  • zoho-verification=zb43861743.zmverify.zoho.com
  • atlassian-domain-verification=jTiLDbBFMAfKwc5ytObqpIM8tsjFH3auTw03PYgNP0oA/LfcRn/LdxpNCVX4ihWB
  • box-domain-verification=f5b12dc2d473b532e05af3325951fb2b29dd1c11ffe1907dd302bafd08d16677
  • infoblox-domain-mastery=642ce8d197c290d511200a53a812f136f4cc20f66d084b646aeb998401fb0b84db
  • onetrust-domain-verification=06dbf57bd777463abab5c74d305ab823
  • smartsheet-site-validation=rOtK59moIrg3YLWa4T-l73e6oMuExM1d
  • google-site-verification=3sTz13EKg0qGxAgg-gM2ruK1llatf6c0qqPAJM4mURE
  • fastly-domain-delegation-SG3JlbSicvnjUP5-20250211
  • wiz-domain-verification=08404115cff5379ad218fb342997d763c235ea97ac1a82c4d6d6df73a89537e6
  • mixpanel-domain-verify=8a787153-c505-46a3-ae82-9c4855f11218
  • v=spf1 include:spf1.transunion.com include:spf-00030c01.pphosted.com include:_spf.salesforce.com include:nw000.com include:spf1.masivapp.com include:spf.protection.outlook.com ip4:66.175.245.8 ip4:66.175.249.135 -all
  • flexera-domain-verification-ddywfwxnutgmcgmy
Cloud / SaaS Services Detected
Apple Atlassian Box Salesforce Miro Flexera Zoho Campaigns OneTrust Proofpoint

Leak Screenshot:

Leak Screenshot