Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo www.empowerins.com

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2022-09-13

Description:

Persons responsible for data leakage: Cortez Maria:Chief Operations Officer (817) 306-2506 mcortez@empowerins.com; Morgan Jan:Agency Compliance Officer (817) 231-4359 jmorgan@empowerins.com; Jayakumar Prabhagaran:Test Software Development Engineer pjayakumar@empowerins.com; Pelzer Rose:Marketing Representative rpelzer@empowerins.com; Fisher Bryan:Agency Owner and Broker bfisher@empowerins.com; Stallings Don:Litigation Adjuster (817) 245-4157 dstallings@empowerins.com; Faulkner Larry:Litigation Adjuster (817)

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 100

Third Party Employee Credentials: 0

External Attack Surface: 8


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • us-smtp-inbound-2.mimecast.com.
  • us-smtp-inbound-1.mimecast.com.
TXT Records
  • MS=ms16554396
  • atlassian-domain-verification=3xAwhCYYd2frbNqKe70b/69PXNVcJtuRUAurAfYeCEbRfaYo1I42wcM06kE9IpM2
  • 0ed1fe018ab7f9c83c6a1349758bd7f5
  • v=spf1 ip4:70.242.196.253 ip4:38.107.248.253 ip4:75.140.231.253 ip4:192.254.121.248 include:us._netblocks.mimecast.com include:mailgun.org include:_phishspf.knowbe4.com ~all
  • wyhrtzfrcswmqxv0dkr76r6nd9v0yrdg
  • MS=ms60132357
  • 1129766da1244fb3a57701da110bead1
  • xwxp4xxynzs5bb5x9zt4frbldqq4ydg4
Cloud / SaaS Services Detected
Atlassian Microsoft 365 Mailgun KnowBe4 Mimecast

Leak Screenshot:

Leak Screenshot