Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo fastrans.com

Group: safepay

Discovered by ransomware.live: 2025-02-19

Estimated attack date: 2025-01-24

Country: US

Description:

Fastrans Logistics

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 1

External Attack Surface: 2


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse tucows.com
MX Records
  • aspmx2.googlemail.com.
  • aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • aspmx3.googlemail.com.
TXT Records
  • duo_sso_verification=rsSZ3911245fFFyNK2Rt5fzqmB4I8ckVdvvbWVdCB06fMvVpMzYnEaudmVvXE5rd
  • v=spf1 a mx ip4:12.230.118.212 ip4:12.230.118.206 ip4:12.230.118.132 ip4:12.230.118.213 ip4:12.230.118.203 ip4:12.230.118.202 ip4:12.230.118.205 ip4:12.230.118.131 ip4:12.230.118.130 ip4:12.230.118.197 include:_spf.google.com include:servers.mcsv.net ~all
  • google-site-verification=s6qf4nxTABh670t0Z5l2l_ePNcKo15P6LK4yXTVKKpM
  • ngbndesrt4s1su5otg618odauc
Cloud / SaaS Services Detected
Cisco Duo

Leak Screenshot:

Leak Screenshot