Zschimmer and Schwarz
Zschimmer and Schwarz
Group: termite
Discovered by ransomware.live: 2025-01-30
Estimated attack date: 2025-01-30
Country:
Description:
Zschimmer and Schwarz, a family owned business founded in 1894, with headquarters in Lahnstein, Germany, develops and produces high performance chemical auxiliaries for the leather, ceramic, textile or fiber, personal care, lubricant, polymer, and phosphonate industries or markets.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 45
Third Party Employee Credentials: 1
External Attack Surface: 12
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- sece.leitstellenservice telekom.de
MX Records
- mx01.hornetsecurity.com.
- mx02.hornetsecurity.com.
- mx03.hornetsecurity.com.
- mx04.hornetsecurity.com.
- mx0.zschimmer-schwarz.com.
TXT Records
- duo_sso_verification=Tr8NDuzkQLlKcNbfSCyvWbSyLr5GNtxjK70h8qAKIjPOIGJsu2wB6aKkcPdPJH9r
- MS=ms66395068
- v=spf1 a mx include:spf.hornetsecurity.com include:spf.protection.outlook.com include:eu-k2.o365.crossware.co.nz ip4:217.5.174.220 ip4:217.5.174.204 ip4:217.5.174.205 ip4:217.5.174.202 ip6:2003:5d:c0ab:2::1008 ip4:149.2.89.2 ~all
- MS=65EBF24BC3A650A387D6070D684E36E317CCE439
- br0z090wqvmt6nhv0dhrtk9cvdkwzxbr
- atlassian-domain-verification=vvcNToNhATmMvaFShiDrR1gHj1yVXxXk4uNHvHoW3XBEawUiuhRztsaCD67rIDKl
- apple-domain-verification=vUh8roqUjypIS4l8
Cloud / SaaS Services Detected
Apple
Atlassian
Microsoft 365
Cisco Duo
Leak Screenshot:
