Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo dgse.com

Group: Blackbasta

Discovered by ransomware.live: 2024-03-27

Estimated attack date: 2024-03-05

Country: US

Description:

For more than four decades, Dallas Gold & Silver Exchange (DGSE) has been the premier address in North Texas for buying and selling precious metals, as well as an exceptional retailer for diamonds, fine jewelry and luxury watches.SITE: www.dgse.com Address : 13022 Preston Rd. Dallas, TX 75240 USAALL DATA SIZE: ~350gb 1. Personal users confidential documents 2. Company data 3. Accounting & etc…


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • registrar-abuse cloudflare.com
MX Records
  • dgse-com.mail.protection.outlook.com.
TXT Records
  • t4481r4va37pr7u1mriih16md4
  • knowbe4-site-verification=17d730f640b0974a2195ec3d1630d077
  • MS=ms49817351
  • v=spf1 include:spf.protection.outlook.com include:spf.mandrillapp.com include:servers.mcsv.net include:mail1.wpengine.com ip4:65.56.125.210 ip4:50.84.223.249 ip4:173.175.254.221 ip4:97.79.226.90 ip4:76.184.151.140 ip4:97.79.240.10 ip4:98.6.159.186 ip4:64." "183.200.30 ip4:24.173.0.162 ip4:24.173.0.165 ip4:216.59.218.226 ip4:98.163.138.251 ip4:70.118.71.34 ip4:104.3.93.173 ip4:172.87.164.114 ip4:24.96.231.174 ip4:97.105.41.226 ip4:50.84.223.249 ip4:150.220.234.194 ip4:68.15.145.90 ip4:72.194.60.10 ip4:70.116." "170.165 ip4:142.202.74.99 ip4:142.202.74.101 ip4:142.202.74.106 ip4:72.108.69.91 ip4:97.134.236.236 ip4:66.59.201.66 include:_spf.psm.knowbe4.com -all
  • klaviyo-site-verification=TGQymD
  • openai-domain-verification=dv-DeNgbNNND3DFtJ3iMGtkqErJ
  • v=msv1 t=0834A480-D3F2-44CC-8C73-B6ADB5DC1523
  • google-site-verification=39s9SREcxOrM6f3HZnhkPEuiuSehkNYATEIpIxx333Y
  • google-site-verification=GAi_RLNtO777KON29xMSsGtOPvhHbYqiVci8CMSW74E
  • yandex-verification: 0739d410bdc841ce
  • apple-domain-verification=xLBK56cQ8MS3pJ9X
  • nordpass-domain-verification=578ded1c3758d00fb1d908e5b170bf4077ed1c453be3c6ac112795a86184bd8b
  • facebook-domain-verification=qh0rx5vfvktkxolu06cfewpsk2yu9k
Cloud / SaaS Services Detected
Apple Mailchimp Microsoft 365 KnowBe4 Mandrill

Leak Screenshot:

Leak Screenshot

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.