Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo iongroup.com

Group: lockbit3

Discovered by ransomware.live: 2023-02-02

Estimated attack date: 2023-02-02

Description:

ION software helps you improve decision-making, increase efficiency, simplify complex processes and empower your people. We enable financial institutions, central banks and corporations to digitize and automate their most business critical processes....


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusecomplaints markmonitor.com
  • whoisrequest markmonitor.com
MX Records
  • iongroup-com.mail.protection.outlook.com.
TXT Records
  • successfactors-site-verification=MjJhZDUyNjQ4OWZkNGJkMGEyMDI2ZTM5ZmJmMGI5NjNlZGNhMjE0YTA1MzBhZTAwNTFhNjg3ZTQyN2EzYzI3NQ==
  • 12d8a215-e6eb-4d86-90a9-fbe045d7162c
  • h1-domain-verification=YMznJZRqeCd6HEfUe7di23Ghkn4SAq8sw275W69ZMKUWXqPf
  • mongodb-site-verification=Mnv4vFX7PBROAGpgTwOYhPHin2Ck0jcY
  • 21916997-4439-45f2-b7c8-62d2d490f525
  • cisco-ci-domain-verification=3d015f299453b921aacbe6b12a72850d878e7e5afc16513d9c2d97553b12337a
  • sending_domain361261=470a16936d675c7fa36881c20643bbfa52472bffd39eb065dfee0f4f37ea0bbb
  • logmein-verification-code=dc491204-c9a4-46fb-abd0-9378c09bfbc4
  • ms-domain-verification=2afc8599-e809-4c5e-a4e6-1ed3cef59c27
  • ZOOM_verify_L7B6RLexRXe_eWFqH1wVOA
  • google-site-verification=e0MdQOS7F8g4emfFBj5xkxKPqF_BTzdKjqypJ4ij5E8
  • openai-domain-verification=dv-TFlXJY5Vn3QVsuPuO9JQxkpD
  • docusign=5a069459-2cc0-4fcd-a578-763bd14b3db7
  • atlassian-sending-domain-verification=9114c124-cc13-4b08-ae77-af23177ce149
  • miro-verification=798cb858fb2a85f27fc286af97035771c88c811d
  • amazonses:p+6+crGSIUIgeMlLM78VOM4FackcSSpfRG7I4lVVYX0=
  • MS=ms93947924
  • 0ed1fe018a423825a6ec424e39acea8a727c6ce91f
  • v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email -all
  • MS=ms16036831
  • 7B17-9EEA-6C9A-F898-D048-1486-397D-1C0F
  • atlassian-domain-verification=4BWV2rcG8IrUUWvS2vN/HVyfqAv1AGSxsDo/e4TUJxjHAZlVu7azU0s/tXUOQmoy
  • webexdomainverification.EPGN=f5446033-71f4-4c72-a23e-f340a511d73e
  • apple-domain-verification=l69MI3oQfqe1WJsv
  • google-site-verification=BIu4NOjaW6_cABJnuvzf7C0FVuiSuuVRX_nTLrK_oIk
  • jamf-site-verification=ZGqwt9DUWw-ldNFlMmoxxQ
  • mgverify=72b74f98706fe4caa52274dc7f84ef64867639fa8824486e5c99e5f49808ce79
  • docker-verification=ed9a2e94-aa2d-4516-b035-7a86ce3ff2c4
  • docusign=91992ebc-1ef0-4588-b094-e445cc5e27c5
  • adobe-idp-site-verification=081118d0e4b1798d9c1a9146bc4cfb59eea1dc2e8478c8dd37284085bd738ccb
Cloud / SaaS Services Detected
Adobe Apple Atlassian Amazon SES/WorkMail Microsoft 365 Miro LogMeIn JamF Cisco DocuSign Cisco Webex Zoom