Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo orau.org

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2021-05-16

Country: US

Description:

orau.org

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 8

Third Party Employee Credentials: 0

External Attack Surface: 5


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse easydns.com
MX Records
  • orau-org.mail.protection.outlook.com.
TXT Records
  • paloaltonetworks-site-verification=405d428dd442801b2cd80881c1c41294895b81dfb01e83bf1447420f80a07839
  • v=spf1 include:spf.protection.outlook.com include:spf-00403e01.pphosted.com ip4:198.124.16.30 ip4:198.125.94.0/24 ip4:198.124.16.53 ip6:2001:400:8814:194::0/64 -all
Cloud / SaaS Services Detected
Proofpoint

Leak Screenshot:

Leak Screenshot