Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

charm.com

charm.com

Discovered 2024-04-19 11:26 UTC
Est. attack date 2023-08-27
Duplicate Entry
This victim has been identified as a duplicate of another entry in our database. However, this may not always be the case: the same organization can be targeted multiple times by the same or different ransomware groups, which may result in separate legitimate entries. Search for related entries

Description:

More information in our telegram channel https://t.me/snatch_team Persons responsible for data leakage:Stanley Charm:President+1 978-687-9200stanleyc@charm.com;Robert Markovsky:President/Chairman of the Executive Board+1 978-687-9200bobm@charm.com, robertm@charm.com;Gerard Ruth:VP, VP, Marketing+1 978-687-9200gerardr@charm.com;David Legg:VP, VP, Quality Assurance+1 978-687-9200davidl@charm.com;Meikel Brewster:Executive VP, President, VP+1 978-687-9200meikelb@charm.com;Robert Salter:VP+1 978-835-6391+1 978-687-9200, +1 978-687-9200 ext. 134roberts@charm.com;Stephen Holmes:VP+1

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operationsweb.com
MX Records
  • charm-com.mail.protection.outlook.com. Microsoft 365
  • mxb-0090d901.gslb.pphosted.com. Proofpoint
  • mxa-0090d901.gslb.pphosted.com. Proofpoint
TXT Records
  • koimao8p3heq4amr5uvmalaims
  • 3giea4rqea8k8q57ncb1h6p1uu
  • geneious.com:domain-verification=Eo169uYWHUQCdGlH-IrbvQ
  • YvKKIRQSC46Xft2inS59/9DA2R26sLGlf7dIKQoNU46mK5FXurZTnXun/iaWQBLGx1RofbJTr9RcmJq0ymt1tw==
  • tec0624jngmd6l45tl2sveepco
  • apple-domain-verification=hYHOCweqK9Nr9K7c
  • wrike-verification=NDY5Mjk0NzowZGQwMzhhNzVlODgyM2M5ZTA2NDNiMGI1Zjc5YWVjZDhmMDIzOGRhNzhjODRhMWRlOTYyZjNmZmUwODVjOTAy
  • MS=ms76067146
  • 69h5pue8jgujjka40jfbmhfn8d
  • k29lumv77lknoupgvo98774dk8
  • LJJr5R4Gl3XfH/DRIudxWe5gZLRxK9pI28DwwW9U6ZBO8+7BniQ+6zT8yz4QsAcN8oojnxVfgoiMxgcGsori4Q==
  • adobe-idp-site-verification=0d95b572eb3774b89cf3a560fcaa2a8cfc36b3390b1ed9cae6dbb1f333bad3b5
  • google-site-verification=e-pZ4ZNJVIysARPpEcHq3KVkc8Z6X5cJQ2f5HbfOLFM
  • pv403prm92crkm4vkfqbncb1ol
  • v=spf1 mx a ip4:162.220.43.141 ip4:162.220.43.148 include:_spf.salesforce.com include:spf.protection.outlook.com include:autotask.net include:spf-0090d901.pphosted.com -all
  • qa62c5oov445achd4b92g979id
  • f2ccf17c-39be-48ce-a065-e174ef322ab3
Cloud / SaaS Services Detected
Adobe Apple Microsoft 365 Salesforce Proofpoint

Leak Screenshot:

Leak Screenshot