Zerto Security
Zerto Security
Group: handala
Discovered by ransomware.live: 2024-06-23
Estimated attack date: 2024-06-23
Description:
Handala Hacked Zerto ( One of the largest Zionist cyber security companies in the world ) Zerto, a Hewlett Packard Enterprise company, empowers customers to run an always-on business by simplifying the protection, recovery, and mobility of on-premises and cloud applications. Zerto’s cloud data management and protection platform eliminates the risks and complexity of modernization…
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 78
Third Party Employee Credentials: 0
External Attack Surface: 11
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abusecomplaints markmonitor.com
- hpe.domains hpe.com
- whoisrequest markmonitor.com
MX Records
- mxb-002e3701.gslb.pphosted.com.
- mx0a-002e3701.pphosted.com.
- zerto-com.mail.protection.outlook.com.
- mx0b-002e3701.pphosted.com.
- mxa-002e3701.gslb.pphosted.com.
TXT Records
- v=spf1 include:_u.zerto.com._spf.dmarcly.com -all
- apple-domain-verification=yalLXSfwwTzUsJcL
- adobe-idp-site-verification=8c148347d167c0a091ffa09234cd1f4cb25c3538fc3f1de8c926b734f213e8d5
- atlassian-domain-verification=WhCSeLlkFTp8ngTypIkgAZWjm4qlUIszeT3YtnhAGKZ/yroe6iDCr/rXptRbTIXj
- _mnkyzubopdpky8kavs5guowrmcyzf3y
- atlassian-domain-verification=btl5bLiLTS7iyv4Do3xiSnMTOuBQy0De1mw51WYGauXJA0KjuMqJtYx/FCrLD1Ra
- ciscocidomainverification=4e2e68e013c2b13a4ea5481accff7c9d89d3305ddf5aeed2401d4794d0009854
- atlassian-domain-verification=3L2LXvzkO16pLP8dnXTTT4lGRVQHWeNalMNGpmdkq9vEZXXomi1XS2fINPrvmunA
- atlassian-domain-verification=4NF5pYLLIpx5QF2IZA0e2aEZ2/HbIC2VrBoYGa67a/7aRLSy0aLTY6Q4Ry92btys
- globalsign-domain-verification=a243111c6bec73bf1a4c62f5c05b1800
- google-site-verification=W9C_nWvEfp1wVAkb4N_MdfkSCZ55LKDwWbrVDUxS8e8
- _globalsign-domain-verification=tJ3Vi2D-L3q4N24mAV16J20D2g_G8pcYwGUuWORseg
- amazonses:OagweH+D9va/N5I/R9ah0dMZrvRcJGMuLn1x2Rx6cqc=
- docusign=20cfd2c2-9211-4370-985a-620471b71e3c
- mongodb-site-verification=ICXOQgLJ8aiEXft9oQ0prKexrGKrGq1i
- globalsign-domain-verification=63bb64bc279b5cc6758459cb0d673b48
- ZOOM_verify_X2zlc0qQQ12nhIihpMP4HA
Cloud / SaaS Services Detected
Adobe
Apple
Atlassian
Amazon SES/WorkMail
DocuSign
Zoom
Leak Screenshot:
