Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Universal Companies

Group: play

Discovered by ransomware.live: 2024-10-10

Estimated attack date: 2024-10-09

Country: US

Description:

United States

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 89

Third Party Employee Credentials: 1

External Attack Surface: 13


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • universalcompanies-com.mail.protection.outlook.com.
TXT Records
  • v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrLHiExVd55zd/IQ/J/mRwSRMAocV/hMB3jXwaHH36d9NaVynQFYV8NaWi69c1veUtRzGt7yAioXqLj7Z4TeEUoOLgrKsn8YnckGs9i3B3tVFB+Ch/4mPhXWiNfNdynHWBcPcbJ8kjEQ2U8y78dHZj1YeRXXVvWob2OaKynO8/lQIDAQAB;
  • v=spf1 ip4:69.27.85.210 ip4:172.127.57.33 ip4:67.237.212.75 ip4:63.215.137.226 include:spf.protection.outlook.com include:shops.shopify.com include:mktomail.com include:mail.zendesk.com include:_spf.salesforce.com include:sendgrid.net ~all
  • 5BE4z7YgY9r3daxKV5RbJRibZ8FhYckNlXnmf8vE7xw=
  • MS=ms31661851
  • VrMCFGNl/AUCf+29SceVj8Zk33e1PLCRIBrKmAf6EsW6tq7NMbmK3fdf1vIegy20vAoM++0sOMqzk6cGuJBBYg==
  • facebook-domain-verification=ad4f29wxsekgqs78r50pgg8ah6ndb4
  • google-site-verification=5gwP1M728XXYw68HIrQwEPFV4m82CQSDDU-LT7rouWg
  • google-site-verification=Wc4JotYOngZLdV_Rb3RFGwdwU3hPu8gPrL6PiCGKhMU
  • klaviyo-site-verification=RQd3xc
Cloud / SaaS Services Detected
Microsoft 365 Salesforce Shopify Zendesk Marketo SendGrid

Leak Screenshot:

Leak Screenshot