boloforms.com
boloforms.com
Group: killsec
Discovered by ransomware.live: 2024-10-22
Estimated attack date: 2024-10-22
Country:
Description:
We allow you to efficiently manage document workflows, send multi-recipient signatures, and receive real-time updates, significantly streamlining your operations.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 10
Third Party Employee Credentials: 0
External Attack Surface: 4
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse namecheap.com
- bc0b9286f59044ccbe7743b24e43f25d.protect withheldforprivacy.com
MX Records
- mx.zoho.in.
- mx2.zoho.in.
- mx3.zoho.in.
- smtp.google.com.
TXT Records
- google-site-verification=Y-8AbUa1_yn-lbkJAYoJXCTNUq_pl4wy0pZoGP0FC8U
- v=spf1 include:zoho.in include:one.zoho.in include:spf.efwd.registrar-servers.com include:_spf.firebasemail.com include:_spf.google.com ~all
- google-gws-recovery-domain-verification=49395885
- pinterest-site-verification=7053f3e6707e7f610ce289aed34e0000
- brevo-code:045aff002158c06806953e11a9abe7d8
- facebook-domain-verification=m0snunljnfgpswfls160lebipct50t
- firebase=boloforms-approval
- facebook-domain-verification=s6z2082a16g67wrfetukpre1r0j0ic
- hubspot-developer-verification=MDE5Yjk2NTktZmQ5OS00ZWE4LTkyOGMtOWNmNzEyY2ZlYTlm
- hubspot-developer-verification=YzcxNTI4MjAtMmNhMC00NWVlLWEyZjktYmQyZGFlYjk5ZWVh
- MS=7D922F189268F7AF6DA0F6A0E37BDC201E9BAC77
- sendinblue-site-verification=6035918
- stripe-verification=6f19e4f0ae6d3c990e7a0de209598db6c7c08839cd56658e01f9f1918ed8ff64
- google-site-verification=5nAiGSMGnVDhyN5Cd6HmURH2TfJc8lXLMKKQc8Ha6-I
- hubspot-developer-verification=NmRlNGE5ODctYmRkYS00Y2VkLWJkMTQtOWM1YTQ4NTVhZjAy
- zoho-verification=zb48552007.zmverify.zoho.in
Cloud / SaaS Services Detected
Stripe
Zoho Campaigns
Leak Screenshot:
