Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Logo

doradosoftware.com

doradosoftware.com

Group: Incransom

Discovered by ransomware.live: 2025-06-21

Estimated attack date: 2025-06-16

Country: US

Description:

Dorado Software specializes in integrated networking solutions, notably offering Cruz SONiC Solutions for enterprise and community networking needs. They provide a range of software and hardware solutions including advanced network performance management, orchestration, automation, and edge management tools. The company targets a variety of clients, including rural broadband providers and organizations seeking comprehensive network automation and IT infrastructure management. Dorado also partners with firms like Dell Technologies to expand their service offerings and enhance client solutions. Contact: Mark Dempsey (Technical Writer) - >homePhone: (916)-989-5707 >mobile: 916-390-4826 Bill Acevedo - >homePhone: 916-536-1206 >mobile: 916-397-0593 Layne Frederiksen (Engineer) - >homePhone: 916.725.1323 >mobile: 916.761.7394 Jim Souders (Vice President) - >mobile: 916.214.6260 Vicki Crozier (Vice President) - >mobile: (916)-833 2052 Ed Kucala (Vice President) - +1.916.673.1100 x1039

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations@web.com
MX Records
  • doradosoftware-com.mail.protection.outlook.com.
TXT Records
  • google-site-verification=gf6_dCuOZVjaTCXoqYT-2wMGd0pdzQ0lowVk2np7TmQ
  • v=spf1 ip4:67.210.108.124 ip4:23.118.218.81 include:spf.protection.outlook.com include:servers.mcsv.net include:4010403.spf04.hubspotemail.net -all
  • atlassian-domain-verification=fjlq6q3NoFmusAWOV1JcWZ7etKHoOWYaagqK8YqklDgPaZfMTeKVBrA4RfZwoaBx
Cloud / SaaS Services Detected
Atlassian HubSpot Mailchimp

Leak Screenshot:

Leak Screenshot

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.