Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo liftkits4less.com

Group: apt73

Discovered by ransomware.live: 2024-11-08

Estimated attack date: 2024-11-08

Country: US

Description:

LIFTKITS4LESS.COM is the largest online seller of suspension lift kit systems. clients' data: ID,Name,Email,Group,Phone,ZIP,Country,State/Province...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 23

Third Party Employee Credentials: 10

External Attack Surface: 14


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse enom.com
  • skqnlcbxhj whoisprivacyprotect.com
MX Records
  • mail.liftkits4less.com.
TXT Records
  • v=spf1 a:server.vsoemail.com ip4:104.207.226.0/24 ?all
  • v=spf1 a:server.vsoemail.com ip4:104.207.226.227 ?all
  • google-site-verification=UoCsqk6g2F--cG2n8xShVR7_VcImWvKviAey5lzKhnU
  • google-site-verification=pERzEe1kxPMkkGvF6kSwj8dEV-oqKW892IIVeCFdq7s
  • google-site-verification=pe_Y_Ug0otQ84o-DgFLe_oj-B6lU9It0lbEYsD0mG-4
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot