radissonhotelsamericas.com
radissonhotelsamericas.com
Group: dispossessor
Discovered by ransomware.live: 2024-04-19
Estimated attack date: 2024-04-19
Description:
radissonhotelsamericas.com
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 417
Third Party Employee Credentials: 9
External Attack Surface: 35
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abusecomplaints markmonitor.com
- whoisrequest markmonitor.com
MX Records
- radissonhotelsamericas-com.mail.protection.outlook.com.
TXT Records
- MS=ms61538424
- docusign=618b737c-60fb-43ec-882b-afd18a8b2f21
- docusign=735c2d15-f7bf-41c4-adce-96d884961212
- facebook-domain-verification=bbna6qskyvhcecgjce0dsspgy6nd0h
- apple-domain-verification=RvV5NvlKfi649aGu
- google-site-verification=v5vAd5LwOq1Lj3otERKTl20thRLw7uBc7-IX1vOM4pI
- smartsheet-site-validation=eytUfAROXfwySN1Qwm9UBSvx9I_ZyLUL
- v=spf1 mx include:_spf_ip_1.radissonhotelsamericas.com include:spf.protection.outlook.com include:spf.mandrillapp.com " "include:_spf.salesforce.com a:b.spf.service-now.com a:c.spf.service-now.com a:d.spf.service-now.com include:amazonses.com ip4:3.210.182.90 ip4:40.113.134.102 ip4:52.208.166.252 " "ip4:62.190.59.144/28 ip4:62.190.159.144/28 ip4:34.215.172.81 ip4:34.211.172.180 ip4:54.212.177.190 -all
- qm6tyt0smn1txz9kv4lyr2wr526r3p8q
Cloud / SaaS Services Detected
Apple
Amazon SES/WorkMail
Microsoft 365
Salesforce
Mandrill
DocuSign
ServiceNow
Leak Screenshot:
