Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo celo.com

Group: blackbasta

Discovered by ransomware.live: 2024-10-29

Estimated attack date: 2024-10-10

Country: US

Description:

CELO is a brand dedicated to the design and manufacture of high-precision fixing and fastening solutions for the fields of industry and construction.SITE: www.celo.com Address : 2929 32nd St SE, Grand Rapids Michigan, 49512 United StatesALL DATA SIZE: ≈250gb 1. Human Resources 2. Finance data 3. Accounting 4. Payroll 5. 401k, Tax data 6. Users: Employees personal folders and docs 7. Clients & etc…


🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 7

Third Party Employee Credentials: 4


External Attack Surface: 3



DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse entorno.es
MX Records
  • celo-com.mail.protection.outlook.com.
TXT Records
  • apple-domain-verification=K8xPpHun1Efy8owd
  • v=spf1 include:spf.sendinblue.com include:spf.protection.outlook.com include:143188978.spf03.hubspotemail.net ~all
  • brevo-code:8c3219dd94af1cb3a717de3b616c1b0f
  • asv=df424524300f561acc4f1ebd42b43eca
Cloud / SaaS Services Detected
Apple HubSpot Sendinblue

Leak Screenshot:

Leak Screenshot