doxim.com
doxim.com
Group: lockbit3
Discovered by ransomware.live: 2024-05-09
Estimated attack date: 2024-05-09
Country:
Description:
Doxim is the customer communications management and engagement technology leader serving highly regulated markets, including financial services, utilities and healthcare. We provide omnichannel communications and payment solutions that maximize custo...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 3
Compromised Users: 1
Third Party Employee Credentials: 6
External Attack Surface: 3
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- registrar-abuse cloudflare.com
MX Records
- doxim-com.mail.protection.outlook.com.
TXT Records
- 2024041619243318lnqb2lwnddlsmfd8ljvdvsxm0mg1lovd5ygvfsqbi3po1sa9
- smctxt=9b4edd67e94378bbf2c755b5f5f24148
- atlassian-domain-verification=yE6D5lrXfI77fee9ZPbg31M5wo83aIsGZ2bfg1asR0DP6MDyP0oM/14Jw63IepcL
- MS=ms11596399
- atlassian-sending-domain-verification=24a182e1-9bdb-4775-a41b-c53beef3c0f3
- google-site-verification=Jw-G51D_AeNH2EseWNS__xDzfx8bouQMVQEIB84j9v0
- atlassian-domain-verification=AecG7wxm36NDBKLwRQ4MtENcVexBVfPtLsR0fxfzal7fctIWR56nxODb3FUxrlQG
- v=spf1 include:spf.bccsoftware.com include:spf.protection.outlook.com include:amazonses.com include:_spf.salesforce.com include:sparkpostmail.com include:aspmx.pardot.com ip4:67.216.75.228/32 ip4:107.6.62.64/26 ip4:76.9.216.64/26 ip4:162.250.13.64/26 ip4:" "205.145.132.48/28 ip4:205.145.141.112/28 ip4:216.26.177.160/30 ip4:216.210.109.132 ip4:196.35.74.194/31 ip4:196.34.31.145 ip4:18.130.55.147 ip4:34.195.27.89 ip4:3.214.10.239 -ip4:18.130.130.200 ip4:63.151.205.192/26 ip4:65.0.70.163 ip4:13.126.121.129 ip4:" "3.128.131.61 ip4:3.14.198.245 ip4:3.133.248.243 ip4:3.19.206.255 -all
- amazonses:pmBGN/7MjnfhTKUZ06Enqq1PeGUaOkw8lGhcfwefcHU=
Cloud / SaaS Services Detected
Atlassian
Amazon SES/WorkMail
Microsoft 365
Salesforce
Leak Screenshot:
