migonline.com
migonline.com
Group: blackbasta
Discovered by ransomware.live: 2025-01-11
Estimated attack date: 2025-01-11
Country:
Description:
Mortgage Investors Group (MIG) is a prominent mortgage lender based in the Southeast United States, specifically established in 1989 in Knoxville, Tennessee. The company specializes in providing a variety of home financing solutions, including conventional and government-backed loans, aimed at making homeownership accessible and enjoyable for its clients.SITE: www.migonline.comADDRESS: 8320 E Walker Springs Ln Ste 200 Knoxville, Tennessee, 37923 United StatesTEL#: (865) 691-7714ALL DATA SIZE: ≈1.5tb+ 1. Financial data, Accounting 2. Contracts, Loans data 3. Home folders, Personal employees and clients documents 4. Personal clients(customers) data and documents 5. Personal forms 6. Confidential data & etc…
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 0
External Attack Surface: 1
DNS Records:
The following DNS records were found for the victim's domain.
- abuse godaddy.com
- migonline-com.mail.protection.outlook.com.
- 0zKshQIXaW8OfrM9vTSsEmRhNBmc58Mn3IRZ2nGbb6RqsjI+2Ok4hqIOAYcH23Qp0QlSRXq87ueLHA3+L/Bp8Q==
- v=spf1 include:spf.protection.outlook.com include:amazonses.com a mx ip4:64.225.240.50/28 ip4:68.232.131.30 ip4:68.232.140.103 ip4:68.232.143.79 ip4:68.232.149.148 a:zixgateway02.pclender.com a:zixgateway01.pclender.com include:mandrillapp.com -all
- facebook-domain-verification=1a12sfq74rei9ryb69m6yhewkq2h8w
- apple-domain-verification=c1Ui03Y0IZRU9MfMQ3r8J0KfFLo17frFJACosIGdApE
- v=verifydomain MS=1986826
- google-site-verification=zFk-QBSLgrxe1H6ERUO2IbSS36OtjovMDZ9NvE4tsZk
Leak Screenshot:
