provencherroy.ca
provencherroy.ca
Group: blackbasta
Discovered by ransomware.live: 2024-05-04
Estimated attack date: 2024-04-01
Country:
Description:
Provencher_Roy is a multidisciplinary practice striving to create living spaces that are respectful of citizens and the built environment, through design solutions that are inclusive, meaningful, and sustainable.SITE: www.provencherroy.ca Address : 276 Saint-Jacques Street, Suite 700 Montréal (Québec) H2Y 1N3 CanadaTel# 514 844.3938ALL DATA SIZE: ~3tb+ 1. Projects (2023, 2024) 2. CAD, 3D Drawings 3. Ottawa data 4. Corporate data (HR, FINANCE…), Personal employees documents & etc…
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse funio.com
- Please ask the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Other contacts of the queried domain name
MX Records
- provencherroy-ca.mail.protection.outlook.com.
TXT Records
- v=spf1 ip4:174.142.221.55 include:relay.spamshield.io ip4:199.59.247.183 ip4:141.193.213.10 ip4:216.46.27.162 include:spf.protection.outlook.com include:spf-ca.emailsignatures365.com include:_spf.intacct.com include:email.freshservice.com -all
- specops-verification-code=3646e7d1-4275-45ea-a1f8-c17e20d9c48b
- intacct-esk=CD366757BD2B167BE0533606510AA02B
- rippling-domain-verification=e9fcd68053a38d9b
- apple-domain-verification=mbMTaFFtAS8gnUVc
- 48dliqc1ebiuasqgiqkgrok26h
- miro-verification=6c25b5958e924d03201b326370dff5cf200520a8
- atlassian-sending-domain-verification=7e86d90c-daaa-4942-8603-408b9943927a
- atlassian-domain-verification=T9uHMm7irFUazjnZ0SaeMIEs75XZOptwXYE0VTiQ/iIVfCC75Sb5lJC8TrxyhaHP
Cloud / SaaS Services Detected
Apple
Atlassian
Miro
Rippling
Leak Screenshot:
