kingpower.com
kingpower.com
Group: abyss
Discovered by ransomware.live: 2025-01-08
Estimated attack date: 2025-01-08
Country:
Description:
Headquartered in Bangkok, Thailand, King Power is a duty free retailer that provides travel related services and products. It currently has online shopping, outlets at airports, and major tourist venues.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 132
Compromised Users: 1651
Third Party Employee Credentials: 54
External Attack Surface: 154
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- mxa-00a29d01.gslb.pphosted.com.
- mxb-00a29d01.gslb.pphosted.com.
- kingpower-com.mail.protection.outlook.com.
TXT Records
- ca3-efbb0e04e66b4940aa9cbb5f093d7fec
- google-site-verification=CgtvAppnAGpBZAiU9L_C2SffIWPsMo_wxqesTvWhx10
- v=spf1 ip4:103.255.198.41 ip4:103.255.198.155 ip4:103.255.198.29 ip4:103.255.198.54 ip4:103.255.198.242 ip4:103.255.198.23 ip4:203.151.157.19" " mx:mail.kingpower.com include:spf.protection.outlook.com include:smtp.txmsv.com include:email-messaging.com include:_spf.one.th include:_spf.lnwdns.com include:spf-00a29d01.pphosted.com ~all
- Dynatrace-site-verification=29edc739-8a5b-4b8e-a4e2-525d2e9b918e__uu863d351uabdhf3809q46fkrr
- MS=ms93794925
- adobe-idp-site-verification=81c6d1ddd8bcd2e35b1c6dd551fd05641d8363a8de917c100f31cde3b8756563
- amazonses:qpGHBLviMTX9XWeGxOGbRGnzud2RisB24ZpmaO+xlZ4=
- atlassian-domain-verification=lFDmca9J7nv6rtjQ4NIwWzacOUpzsW3L54oHXaqfNbSErUYfvNUT4cW5tjCaUytQ
Cloud / SaaS Services Detected
Adobe
Atlassian
Amazon SES/WorkMail
Microsoft 365
Proofpoint