Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo garrettmotion.com

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2024-04-19

Country: CH

Description:

garrettmotion.com

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 7

Compromised Users: 697

Third Party Employee Credentials: 11

External Attack Surface: 70


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusecomplaints markmonitor.com
  • whoisrequest markmonitor.com
MX Records
  • garrettmotion-com.mail.protection.outlook.com.
TXT Records
  • paloaltonetworks-site-verification=04ba0cb3fc1d55ff4e019e5efc77c5e507178a25b064a0d6e60e27c979ed3f66
  • cursor-domain-verification-ewsc1h=uZBwocSyLjTv8T12ADsJgT2G9
  • paloaltonetworks-site-verification=8a342d50488cd1716ee1adf83cff76f478694ebd5620e431a2868a64f202695a
  • v=spf1 include:%{d}.a8.spf-protect.agari.com exists:%{i}._i.%{d}._d.espf.agari.com -all
  • google-site-verification=GTN6NUseK8aH3yyP0uUCgFPjqJmnthnBV0zVOvFnQNI
  • mongodb-site-verification=32xADDLnHhbSKPMuNU069J4PIb3tbPrt
  • atlassian-domain-verification=fzzO6Zwmp8DvfMjeh3hPkBwdsWfcmpagbY/6CQmN7IIPhMUyci8kfvrGMOOc45C5
  • docker-verification=b7158ff5-4435-47cb-a8f3-3d409ec7adf2
  • google-site-verification=5kP3cy6Vtp-FZF1pJBolyTxuZGh2YoarsKKROasJ76c
Cloud / SaaS Services Detected
Atlassian

Leak Screenshot:

Leak Screenshot