Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo hetero.com

Group: lockbit3

Discovered by ransomware.live: 2024-05-09

Estimated attack date: 2024-05-02

Country: IN

Description:

We are one of world’s leading producers of key Active Pharmaceutical Ingredients (APIs) and generic formulations with presence in 140+ countries and backed by 30 years of experience in the pharma sector.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 2

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • hetero-com.mail.protection.outlook.com.
TXT Records
  • v=spf1 include:spf.protection.outlook.com -all
  • MS=ms82795998
  • udbl1c2kkkrh32a9kelgmbrv0e
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot