Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo riteaid.com

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2021-01-02

Description:

riteaid.com

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 3

Compromised Users: 3001

Third Party Employee Credentials: 14

External Attack Surface: 102


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mxa-00005c01.gslb.pphosted.com.
  • mxb-00005c01.gslb.pphosted.com.
TXT Records
  • v=spf1 include:spf1.riteaid.com include:spf2.riteaid.com include:spf3.riteaid.com ~all
  • ugjc3fr791prrfi4013qb6vplk
  • facebook-domain-verification=aik8rtymgikqceyrlu9kuz9sjfhp6e
  • rsvpjtqbl88nankd1f3b1kuok7
  • google-site-verification=dqOOlNFW4fJ8NP31S9gX8HK46Xdlnef-WZ2MiZ0N_G8
  • apple-domain-verification=0AC5jl8NBGaYDNnm9EP2sIGzWNxZtKKE4mf8kLk1_Ws
  • _sdokx4bymvyus0aa6k8zuwxpgplvk8n
  • TGMM+w2K8OHMmrVPtGNBQURV4Krai5Yy7IDNKnvbrYHu2yllt7nlKyC4QuRxUcgBZzqS1huktLWSzB//iMYdsw==
  • facebook-domain-verification=79lhh6qaozrhwbvxwa8loxzrq8tnh2
  • 38TA954j0zwqZbP5lqHi+iPhKIFrJS1rbXhwgzTKGWs5O0cdv/tYPsCeYIhlH9RQ9oCFPIUNQHfRhXqKMfrZ9A==
  • google-site-verification=mucvcjPGVi9eXc_H2HgxOdOhzUKODgDENK45Ai9OnF8
  • mongodb-site-verification=SgZa7zJMafxcGvy6K0Dw5K498pK6Yq05
  • onetrust-domain-verification=8b80f5a3704d4f849383764dc0b224de
  • ZOOM_verify_SIobRKAiQtOHdYJkd3iIjg
  • docusign=554c4b92-2e1f-43bd-bcd6-fbaac60418f4
  • ciscocidomainverification=3ec01e9e13e969fbbdede4e02c0f2a95bcce7d5d4f24ad257411c94962053948
  • intersight=6ab2aadd9c3c6d22fb4dd5defea04d3c920f5a0fc6601ea245346737b5682906
  • apple-domain-verification=3SjMHqXqCU7E93sn
  • Dynatrace-site-verification=45cfe04c-d06f-4e3e-b437-872bdcc457bf__e14h5calb80j6r6d9qhmfe4934
  • google-site-verification=unh2YVBMp8PGYzhOs5BR5Xv1Uv46QbLKmQjEPv9Tt7Y
  • MS=ms63871661
  • adobe-idp-site-verification=b5a5f0924c0f4eb188481b5f415e8903f9e48cf33a2a384d27f56cf3dbc9de78
  • docusign=e2f2fc4b-bfa1-4829-bd6c-7ea9edcf09d0
  • 5re71udkfi9rolcd81a3gmi3u9
  • docusign=3d408ef2-1d3f-49e8-b083-3c95a6a44b23
  • google-site-verification=iO-j4m9SEmpE8ZtTFli1XyXtojd5FFPwKA2AbT2x_a4
  • _globalsign-domain-verification=rFayBAAZ88UhqW2VDOMQIYGzv1fucNKnl0RbYFe68e
Cloud / SaaS Services Detected
Adobe Apple Microsoft 365 OneTrust DocuSign Zoom

Leak Screenshot:

Leak Screenshot