Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo manchesterfertility.com

Group: lockbit3

Discovered by ransomware.live: 2024-02-01

Estimated attack date: 2024-02-01

Country: GB

Description:

Manchester Fertility is a long-established, trusted fertility clinic with true heritage - in the early days of IVF we were instrumental in its widespread development. Our founder Professor Brian Lieberman launched the UK's first, fully-funded NHS IVF...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse tucows.com
  • dnsmaster zen.co.uk
MX Records
  • manchesterfertility-com.mail.protection.outlook.com.
TXT Records
  • v=spf1 mx a a:portal.manchesterfertility.com include:spf-uk.emailsignatures365.com ip4:54.240.4.17 ip4:82.71.166.2 include:amazonses.com include:spf.protection.outlook.com include:_spf.sonicsecuremail.com include:_spf.sonicsecuremail.eu -all
  • _globalsign-domain-verification=AxwUW1qscVuwYA4XHnOJWRVsWGCzyxUhY0VjodWSd0
  • _globalsign-domain-verification=d2lBZzzwPcZVzdaJwWTEkeeC36HlASn4o8YS5B_d-t
  • _globalsign-domain-verification=qJA0VHWUu4OvF5E-eyl2OUAx9pfcFnUcEqTuXl50cv
Cloud / SaaS Services Detected
Amazon SES/WorkMail

Leak Screenshot:

Leak Screenshot