Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo weste#####

Group: clop

Discovered by ransomware.live: 2024-12-24

Estimated attack date: 2024-12-24

Country: US

Description:

Presumed victim name: Western Digital - Cl0p announcement. We have data of many companies who use cleo. Our teams are reaching and calling your company and provide your special secret chat.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse cscglobal.com
MX Records
  • mx1.hgst.iphmx.com.
  • mx2.hgst.iphmx.com.
TXT Records
  • globalsign-domain-verification=B4020326E809B18D96745996AC319723
  • paloaltonetworks-site-verification=4d85508e193b2cf0e4e1e062aea108af23cd25d38875c93d74fd80202e9a70da
  • atlassian-domain-verification=OAGQ7IBFEa1izjQNHsCUn2azcgCdjPCpwyndxx66LGW0KYZ45nnVBzcUhKa3/AYh
  • bgorPZidl7ikgB+NRc8QdmHh1nlmIAHTva0duucAdC7wZyU8K5VhR3MaP9LW8f4yufoOYYTRjtYBJ+uijAr8Fw==
  • status-page-domain-verification=cl7mbr6xprs1
  • atlassian-domain-verification=jlQPgn4fXQnwWKCJISNhVK6oca5jNadD3eBDstcaG89kPJtSGEmFXDWIkJ95sajY
  • duo_sso_verification=tCOYAw43XtDS9U8ZBMbGSY8hT8p7DG6VI48QAFdT7U9PQ39I6PL6lfGGJJZGmTAC
  • infoblox-domain-mastery=7cb0e8c5578a446eea4dbd3a1b40082a2c7a04f671347781bcabde7665f5e64ad7
  • smartsheet-site-validation=8lpfU3u7nELRuA3wcrKTPSNQO8Uh-YEg
  • _globalsign-domain-verification=VS3KvUUK1xhrlq8ZO_E-GIZI2reUjhcInUrg7KBFKC
  • google-site-verification=GHik-FZABEcjeYfm7ujsFQYjE8loD-5UoH76V-0vD_c
  • google-site-verification=6hRYX66udc05LknQLlzkyL9bBQ-3Pnjy16cJ1nVQ2co
  • docker-verification=8edb8dba-cdce-4f6b-afad-ba989c51c10a
  • cursor-domain-verification-gvv596=6cN8FsaV8VeAyVlhlTPCPR1fz
  • hpe-greenlake-domain-verification=64485569594d583567757047324a727438505632554266317461654b3856684f
  • WDC.capple-domain-verification=SnrXMNkIAIfocxKQ
  • miro-verification=a42ba73f4d0601d5d88797b475913bf5e99e1995
  • 41dab4c729f140c8cf88adff0522cdb5.wdc.com
  • jamf-site-verification=V-YQm9VWh0nIUDe2x3r02A
  • globalsign-domain-verification=95D6F597A4BE6965C3878A8903AD20EA
  • remarkable-domain-verification=642e5b6d-4081-4704-b2b4-3320b1942469
  • adobe-idp-site-verification=16038097437bf90e8a202be467ad24f26e603ec68aa632d63d8ed89fbae11d1a
  • asv=46becd2353af805a8abf5c04b55d438d
  • v=spf1 include:spf1.wdc.com include:spf2.wdc.com include:spf3.wdc.com include:spf4.wdc.com include:amazonses.com include:spf5.wdc.com include:spf.protection.outlook.com include:_spf.salesforce.com ~all
  • onetrust-domain-verification=352549314db64f69a2e17193a60c9882
  • facebook-domain-verification=iiemdtwwsy9wadbpe51ojy3sun9w54
  • google-site-verification=w605TZCOf3fl91NHgJf-K540takPDKlvIYfGbcyP-xg
  • apple-domain-verification=SnrXMNkIAIfocxKQ
  • workplace-domain-verification=140e6616-9537-4bf4-910c-09044c18644c
  • ciscocidomainverification=76a6c1a745be3abafa4cbcbdca28a38c037199fb42f6f8df7dfac063109ae36
  • MS=ms35342791
  • docusign=02cfb7d9-3bf2-474a-8e07-be870ee7cc68
  • duo_sso_verification=MqYyDyHYeJGBcFeASj0FpNGOfIuG6KhsfVvmZ4094qH9ausmifEYWfHauMCtrHaQ
Cloud / SaaS Services Detected
Adobe Apple Atlassian Amazon SES/WorkMail Microsoft 365 Salesforce Miro JamF OneTrust Cisco Duo DocuSign

Leak Screenshot:

Leak Screenshot