gocontec.com
gocontec.com
Group: lockbit3
Discovered by ransomware.live: 2023-05-10
Estimated attack date: 2023-05-10
Description:
first part of data.Contec Holdings provides repair services to satellite, cable & IP based system operators, B2B, B2C, and E-commerce order fulfillment and logistics services, and in or out of warranty repair services for OEMs.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 13
Third Party Employee Credentials: 13
External Attack Surface: 0
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- mail3.us.scanscope.net.
- mail2.us.scanscope.net.
- mail1.us.scanscope.net.
TXT Records
- SJg8ZUcUjc4I/FWUqLStvgtpZ+zHVPsknTOSffIh/Yn0QtLF39vleCU7m7MIyVrl9CaTuy47FuSzSxn8VU8xqw==
- 6O+5UH6zUmm3hQHST2Qri3vKsPwTfhaocFUtaqaN3s4=
- _globalsign-domain-verification=QYuaUjXqIg2BfFBILWkiIqK0tWjAf3loVhPTbpqtjl
- MS=ms37561929
- jg5ldwtlg6ysh5z2k7cyzy11461hmjzk
- v=spf1 IP4:160.72.65.70 IP4:50.75.19.100 IP4:201.174.53.148 IP4:189.204.230.201 IP4:201.174.53.146 include:spf.protection.outlook.com include:emailsrvr.com include:servers.mcsv.net include:_spf.odoo.com include:scanscope.net -all
Cloud / SaaS Services Detected
Microsoft 365
Leak Screenshot:
