cognizant.com
cognizant.com
Group: dispossessor
Discovered by ransomware.live: 2024-08-08
Estimated attack date: 2022-06-01
Description:
cognizant.com
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 2
Compromised Users: 4
Third Party Employee Credentials: 4
External Attack Surface: 200
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domainabuse cscglobal.com
MX Records
- cognizant-com.mail.protection.outlook.com.
TXT Records
- pardot324941=72791e61395d902b5e8a804a82b8eb27c8d92ea6ca6d5c9883da747c9cd6663b
- webexdomainverification.4C675B8BC6A3B136E053AB06FC0A3F65=ac26b679-55c1-49f7-8e65-e0ca148e314e
- pardot_297592_*=16a7ad38eec20d8d0f04c9ed853dd41cc6022d91302351fca2078c3be59d5d15
- g9pllqjvd5pp2478gh49x1fmhlw2jtgf
- skQs6+YY0SUZT7edqsy9CgaEk27fcrhi4OjzP8eJ8J2OY78zM0aJKurDjyonwP/Qpng/mGxkWNKxlasaDsinjQ==
- sending_domain976793=e03c72a3f03420cb799408a5782c535acffe3644f7f0cba29180f14685399e8d
- 39a75ad8213020ab9c315e201f479ea85507f247317ebfbae3bad601035363a7
- atlassian-domain-verification=svw9vQ5CWP4y6tv4ZdcOWsTScZZRNVdHJkR3d4gwTCXzZhTER9Ijha4972cDt4s3
- webexdomainverification.7E263=fae9ece6-f96a-499e-ae91-85a63b2741f5
- sending_domain1028133=0570259ef533e7e32a44c6b3611d06e26d9d3d7dd1d3b079638e0ea1940f83aa
- MS=ms46734856
- MS=ms24926416
- atlassian-sending-domain-verification=6b483ad1-3d2c-4cf6-b884-ffda02d7c645
- atlassian-domain-verification=qoYHErvPpa1ocMefaUYFY0fldvL1x4g0kz4e617YUcKMs5JWw1jiCqixkzAa78EM
- google-site-verification=tn933BJ_nNw9wzZtUkAgpr8WRthyfsB9AYMeVSjgsfY
- sending_domain324941=27b1b300e1df7449ded5367dc64e2e01d175fabcce59fa727f20654e78453575
- dl38w207y57zqwb18wmynjczh6lk2g5n
- miro-verification=4605baf5dfedb2a1cea9d10ff37b5ff658e128ca
- webexdomainverification.K4HG=72a558b4-a188-4da8-9569-db78a08819e3
- smartsheet-site-validation=eu0Y0jOeqL4tb7Ea9N76znCU2aYGAgkh
- atlassian-domain-verification=D3HTOEnqW2ME4AMO7LoumBSsgjHfES7hlUMHPEa7RKaWKHCgbqBwuielm/6DuLYJ
- atlassian-domain-verification=dsLXh/1oK73H5Y/rUl/NiodPru1KO79rtn26Hjq+nlcB3QoJnaVhkOCL8rKGzFPe
- 291318b44a6ae47321ba17c61691008864f8919eb2717ac21e139c49b739c686
- _mwnn6220mxbd6quhnrg5t3ww68ei7dg
- cursor-domain-verification-0h6nn2=T0dl7RMa8ZNYI55EuYFqtcUKL
- docusign=efc378d2-7d1b-4dfb-9bf2-2fec8024524a
- atlassian-domain-verification=oXM3i1zBNoCpuKLsZadMl6Ttc0W4KA4zAITdzKc/UOaacY0PaNiqk8WomjTHZ3wX
- pardot1053733=faf4f027d9a870b323774babe9ffdd558c9b6cec54d6b434b887b52493db640c
- docusign=c897c9b2-3cd0-478d-ab44-d2089a5bb916
- webexdomainverification.=04f6d0d1-5518-43a0-b705-756af61fa93e
- _czyepxtly3oip9idizh2i1yvq0jmv8p
- atlassian-domain-verification=FECOOPbbK+m/AJa/lUhPyo/SNNk/+e+a/+yOj3rG4sruBvW/G8vl6hCrLAal5tKd
- mf76d8dyhbbck2pn17h88q31j141j95x
- atlassian-domain-verification=HwsSESX4um3FabFBaonpkBSr0mRCYwbHT8LSdy44cfgjcUqoe3uqWiRzLQw5wkye
- _v1dtbnzxpni1iyzmdfzzhn5tf04v29m
- sending_domain1053733=236acf4b6f7a53346a10f14d87e2f86abc03c7026bd9d80b0c5b47dfec943f4c
- SmCGXRvh/I50ND8a5xR9X9ebsEBfd/JommK4w0s6XosDYt/PIqac7tUs+ei6Ey9Z2nWgG/0TJZFhFN/j/dkp8g==
- v=spf1 exists:%{i}._i.%{d}._d.espf.agari.com include:%{d}.b6.spf-protect.agari.com -all
- atlassian-domain-verification=dXGDQHvBMQZCMrwAboDYme7SzdDhsUqbh6BYJhOeVcGE4T7gMpIkAno8M0pAOqvO
- smartsheet-site-validation=x7xYGWcnTM0amFG7GAcMGOieGMZzgmW-
- a311a50c-96af-46ed-bf6d-cab745451776
- webexdomainverification.4C675B8B8073B136E053AB06FC0A3F65=28d4067d-2e36-4d0b-a119-e8a296fc3264
- atlassian-domain-verification=uXsNgfpVr2aGf3/J08CfT8QGc8fkFqOaS+8EnGi55nAkozeibnDzRBhTA3lDGl9q
- atlassian-domain-verification=fW2kMRmmcDvKOJx1xKOyEuVFvgyilx9AjPmHfl/ffOPvkZJFZ9UiZuN6XhPjdqmB
- atlassian-domain-verification=tWwX2jDg51EmETanIxZ6XPwaKvmP6ZQ7aDppWdb4oGpYY9viH/dlwaF1qW8eXRHX
- intersight=c525cd90d97609802ee2b114e591c7b9014ebcc9adb3815695d0d721456f5305
- jamf-site-verification=DEarDME2Qr0YJJ-eHJYgrQ
- reachdesk-verification=SPN1gB3vV4cZz7CTRJ571EVzmWhmYmusqEMR3oFB6YPwsahi572PZHtTlykBhEFr
Cloud / SaaS Services Detected
Atlassian
Microsoft 365
Salesforce
Miro
JamF
DocuSign
Cisco Webex
Leak Screenshot:
