Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo flynncompanies.com

Group: blackbasta

Discovered by ransomware.live: 2024-03-22

Estimated attack date: 2024-03-05

Country: CA

Description:

Flynn was founded in 1978 in Winnipeg, Canada. In our early years, Flynn’s focus was on commercial roofing contracting. We established a reputation across Canada as a top-notch commercial roofing contractor. As architectural products became increasingly complex over the years, we recognized that the best way to serve our clients was by providing them with products and services for the entire building envelope. We branched out to provide a range of architectural products and roofing services, including metal paneling, contract glazing and curtain wall. Today, Flynn employs over 6000 people and serves a diverse portfolio of clients across North America, for the entire building envelope.SITE: www.flynncompanies.com Address : 6435 Northwest Dr Mississauga, ON L4V 1K2 CanadaALL DATA SIZE: ~4.0tb 1. Private (Personal users confidential folders and documents) 2. Company data & etc…

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 2

Compromised Users: 3

Third Party Employee Credentials: 4

External Attack Surface: 10


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • registrar-abuse cloudflare.com
MX Records
  • us-smtp-inbound-1.mimecast.com.
  • us-smtp-inbound-2.mimecast.com.
TXT Records
  • canva-site-verification=jZPEG2fs8uSmWkpEhxRuAA
  • globalsign-domain-verification=21a683153365594aeaf5d1c47923c2a4
  • vdzOErzF555gH+DfPt+EwN22YUFot9EMyg2CG/xFjDp25SzUr550pEXfBIEJ5pCetV9xqcM49ALzM4ce/VZraA==
  • atlassian-domain-verification=uQvKueuEJ/d26LvLBo3dU2YRT/gLvmj3Cg/fxQ191FzvD9ahyfWyJWTTh1M3FxvE
  • bluebeam-verification=a3qf66gq9vys9pykfch681yi68dq9e
  • _globalsign-domain-verification=FYBAMrf6QFTsFRlMvqyGA_0__2Amo38UR50uApLItb
  • autodesk-domain-verification=7SrWjyRWSTUg5UTKqK3E
  • new-relic-domain-verification=7b71774afd8c486c805619b0f7c7d4f1
  • jamf-site-verification=WakdoewXbfLsp7XiHKXl9w
  • dropbox-domain-verification=ogfdq5jokwka
  • openai-domain-verification=dv-IXwu2exjIT5y90qaW7Vvhos4
  • teamviewer-sso-verification=709ce6cc5cad4f7aa4298d55f605f719
  • ib5okbe34u3d0763a0fkeci5lv
  • f04f57147d24h9nbc6gektbamb
  • 0ed1fe018a17ecc02df5714652821a54e828424a9a
  • figma-domain-verification=17ab01ff3ca3873a8d74e0dc0f3b43654279ceb2e84eae612aaa7e09a9a97bcf-1753734020
  • u98fl05qc23gh48nnr5pvgu7ga
  • BA8F5A7A84
  • atlassian-sending-domain-verification=f9cbbe17-bb81-4e22-ba30-fbdb54f72288
  • d6orb4eqsmpq480vqs0g21ehd4
  • apple-domain-verification=e61cBZgYyQ4rHbYT
  • docusign=78ad1dd7-a26a-4b3a-9253-5be753229d7d
  • MS=ms39649063
  • gitkraken-domain-verification=7cfbf6c1055a9bbf3b7f360c070edc763dac565fb9faca9ea3a7620dfe50ed4d
  • successfactors-site-verification=OTY3NWFlYmM4ZjRkMzhjMmQyODljMjQ5OTdiMzc2MDAyMThkYjViMDc2YzQxOGRmNjk1ZTdjNGIzZTg1N2NhZQ==
  • v=spf1 include:us._netblocks.mimecast.com ip4:191.237.4.149 ip4:72.138.154.78 ip4:72.138.154.79 ip4:192.235.102.127 include:mail.zendesk.com include:_spf.atlassian.net include:servers.mcsv.net include:spf.mandrillapp.com include:spf.protection.outlook.com" " include:_spf-dc17.sapsf.com include:docebosaas.com ~all
  • adobe-idp-site-verification=c2bea7211f4957156b3a75f767dd29df3667d0e98e245eff078f10b003b365a7
  • globalsign-domain-verification=d86e0c584823058421f598f42dd11a30
  • MS=ms85747391
Cloud / SaaS Services Detected
Adobe Apple Atlassian Box Dropbox Microsoft 365 Zendesk Teamviewer Autodesk JamF Mandrill Mimecast DocuSign

Leak Screenshot:

Leak Screenshot