Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo casepointcom (UPDATE)

Group: alphv

Discovered by ransomware.live: 2023-07-26

Estimated attack date: 2023-05-30

Description:

We have over 2TB of very sensitive data, lawyers, SEC, DoD, FBI, Police and more.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • trustandsafety support.aws.com
  • 1e0d367d-dca8-435d-85ac-05bdff93b7a9 identity-protect.org
MX Records
  • casepoint-com.mail.protection.outlook.com.
TXT Records
  • MS=30CED4E9FA6986DA0C9A470B8DDF7DEE9CF3FAF8
  • globalsign-domain-verification=7700E772399345D12C7DB93789A3C217
  • v=spf1 ip4:64.125.48.179 ip4:38.101.76.200 mx include:spf.autopilothq.com include:_spf.salesforce.com include:_spf.google.com include:mail.zendesk.com" " ip4:3.93.157.0/24 ip4:3.210.190.0/24 ip4:18.208.124.128/25 ip4:54.174.52.0/24 ip4:54.174.57.0/24 ip4:54.174.59.0/24 ip4:54.174.60.0/23 ip4:54.174.63.0/24" " ip4:108.179.144.0/20 ip4:139.180.17.0/24 ip4:141.193.184.32/27 ip4:141.193.184.64/26 ip4:141.193.184.128/25 ip4:141.193.185.32/27 ip4:141.193.185.64/26 ip4:141.193.185.128/25 ip4:143.244.80.0/20 ip4:158.247.16.0/20 ip4:216.139.64.0/19" " ip4:23.21.109.212 ip4:23.21.109.197 ip4:52.49.235.189 ip4:54.172.84.90 ip4:147.160.167.0/24" " include:spf.protection.outlook.com -all
  • cywetadns-domain-verification=b9e8023263296806c2529fe7e50a54d3
  • MS=ms93611685
  • MS=ms20094822
  • D51B7D66E9
  • oedq76saiallq9wc7idtq8qryu9jnsr8
  • google-site-verification=Ru2UlUgZHH_qbyTQzkstD5429R4lPMWXUcDmCjUPXms
  • zoho-verification=zb38747037.zmverify.zoho.com
  • google-site-verification=LM0baGxUeyxIIQ_0B4ByTp2qHll__4Y0hnwUjM5jRkc
  • asv=9cd0d1b68acc60690525946f8d63b567
  • _globalsign-domain-verification=myuoZnZpKfF5rYNz0xH6HX0Z5stU1Zlfm3F-X9CQJJ
  • google-site-verification=ImqMKtxWlGm2JvUCqOcYhS-N7JHlG247_EU-Pra-nFI
  • 642bzpy0kd5v5fkf70xnj5n1z3xxl9yy
  • site24x7-signals-domain-verification=1f59a82cbf40ed1c913eb2c66511ecbe
  • _globalsign-domain-verification=aZbB5DG6BilvhRoBGsX4DXN1bkeXYLv1WH-Ck8Tsde
  • D1D80034FD
  • google-site-verification=e0wriGzzIm_zHNAOPWmLOQG-sJvP_9ojA-cJDgOrDQg
Cloud / SaaS Services Detected
Microsoft 365 Salesforce Zendesk Zoho Campaigns

Leak Screenshot:

Leak Screenshot