radiusgs.com
radiusgs.com
Group: dispossessor
Discovered by ransomware.live: 2024-04-19
Estimated attack date: 2022-05-01
Description:
radiusgs.com
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 14
Compromised Users: 50
Third Party Employee Credentials: 36
External Attack Surface: 6
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- radiusgs-com.mx2.arsmtp.com.
- radiusgs-com.mx1.arsmtp.com.
TXT Records
- google-site-verification=7wQYuF2rmfZq6zu_kBHev53i8NAno4DvLcmu655g428
- mandrill_verify.aaKgpG9gxFzrEZ6Gp7dmaA
- SFMC-fLUCBOdh9kmPyFShkKOcJ9pJTBo2jNuX7zxEVMMh
- slack-domain-verification=mihZF8RVXAWlFgFcUKCagAEjvac3WIFWvxQwuxpH
- MS=ms85401334
- v=spf1 include:universalspf.org -include:x.universalspf.org ip4:199.30.235.227/32 ip4:8.31.233.162/32 ip4:205.219.251.0/24 ip4:131.226.244.80/28 ip4:74.203.185.227/32 include:spf.protection.outlook.com include:cust-spf.exacttarget.com include:edgepilot.co" "m include:in.constantcontact.com include:rgsreports.com include:amazones.com include:res.cisco.com -all
- cisco-ci-domain-verification=c3737e60511df064e39afba3f383067b3d297b8c2e002bc0578ea8ac6d12c65
- duo_sso_verification=vs1e9cNptQ4ZRM0cVQ5D3XaaR1eR1ii5fgufwtukspG55x0zqVzP6wEg2B2ITLT1
Cloud / SaaS Services Detected
Mailchimp
Microsoft 365
Slack
Cisco
Cisco Duo
Leak Screenshot:
