Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo rockymountaingastro.com

Group: ransomhub

Discovered by ransomware.live: 2024-09-28

Estimated attack date: 2024-09-28

Country: US

Description:

Rocky Mountain Gastroenterology is a healthcare provider specializing in the diagnosis and treatment of gastrointestinal disorders. They offer a range of services including endoscopy, colonoscopy, and liver disease management. The practice is committed to patient-centered care, utilizing advanced technology and a team of experienced gastroenterologists to ensure high-quality medical treatment.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mx1-us1.ppe-hosted.com.
  • mx2-us1.ppe-hosted.com.
  • rockymountaingastro-com.mail.protection.outlook.com.
TXT Records
  • 7ijrCnbKgRv0swnRq3iwAwLww0FpBx2chLMFLmD6b4KvHlAjhpudq7NpJyGJ1pPgmvJUo3MRB6Z+KKSow4IBNg==
  • is0h38kr66u2l9e4dd9jg4fgfd
  • 4bdnvde44duftm4nr3g5je68l0
  • ppe-aca953b89534c9c786fdd1e642645ef96a056b6e
  • zoho-verification=zb07719370.zmverify.zoho.com
  • v=spf1 a:Mail.rockymountaingastro.com ip4:199.189.169.16/28 ip4:199.189.168.0/27 include:spf.protection.outlook.com include:_spf.psm.knowbe4.com a:dispatch-us.ppe-hosted.com ~all
Cloud / SaaS Services Detected
Zoho Campaigns KnowBe4 Proofpoint Essentials

Leak Screenshot:

Leak Screenshot