cxm.com
cxm.com
Group: lockbit3
Discovered by ransomware.live: 2024-02-04
Estimated attack date: 2024-02-04
Country:
Description:
Chicago Extruded MetalsFinance (budget, audit, cash flow, balance sheet, tax returns, project calculations, YTD reports, bank statements and many other financial documents) Employees (personal data of employees, contracts, information on salaries,...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 1
External Attack Surface: 0
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- trustandsafety support.aws.com
- e7e1807e-1f8a-459f-a94b-7f224bb41a39 identity-protect.org
MX Records
- cxm-com.mail.protection.outlook.com.
TXT Records
- slack-domain-verification=1woJLit1hrNPfhxmRz2V0y3XDFCOkoEGGlOWH3ZQ
- v=spf1 include:spf.protection.outlook.com include:one.zoho.com -all
- MS=ms82539711
- TAILSCALE-XVqrtl0wY6NqZOPRlSGf
- docusign=f8b8b1eb-86c8-42a9-9532-98c0d2ebf69b
- google-site-verification=98cIxCSaAj-gZbojnvLyBHT6wSW_G7dkjpMIKByHDU4
- google-site-verification=t6JaRyMJ9OIyhNVb-6Q3wlA0qOC4Nxmj7J8MkLCo3FQ
- openai-domain-verification=dv-Gfo7IEMsOTx8agBqghvwBedK
Cloud / SaaS Services Detected
Microsoft 365
Slack
DocuSign
Leak Screenshot:
