Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo www.grandview.org

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2022-11-01

Description:

Persons responsible for data leakage: Curtis Kim:President (816) 761-6505 ksc@grandview.org; Poindexter Valarie:Manager, Communications (816) 316-4812 vpoindexter@grandview.org; Borst Holly:Manager, Purchasing (816) 316-4872 hborst@grandview.org; Cedro Alyssa:Supervisor, Customer Care (816) 316-4888 acedro@grandview.org; Huynh Athena:City Engineer (816) 316-4857 ahuynh@grandview.org; Dabney Keith:Building Official (816) 316-4825 kdabney@grandview.org; Gall Joseph:City Attorney (816)

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 1

External Attack Surface: 0


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • d331822b.ess.barracudanetworks.com.
  • d331822a.ess.barracudanetworks.com.
  • exchange.grandview.org.
TXT Records
  • MS=ms43333546
  • v=spf1 a:grandview.org ip4:216.21.166.50 include:spf.dynect.net include:amazonses.com include:spf.ess.barracudanetworks.com -all
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365

Leak Screenshot:

Leak Screenshot