tursso.com
tursso.com
Group: dispossessor
Discovered by ransomware.live: 2024-07-29
Estimated attack date: 2024-07-29
Description:
https://streamable.com/ixp9fn + https://streamable.com/2l7h7x videos of confidential files exfiltrated from Tursso Companies INC.
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- mx2-us1.ppe-hosted.com.
- mx1-us1.ppe-hosted.com.
TXT Records
- v=spf1 ip4:173.11.59.137 a:dispatch-us.ppe-hosted.com include:_u.tursso.com._spf.dmarclb.com -all
- ppe-ed3effd4fc599d62cf4c0c038cc5848980f45f9f
- v=DMARC1; p=none; rua=mailto:61a6859ae0c2a@ag.dmarcly.com; ruf=mailto:61a6859ae0c2a@fo.dmarcly.com; sp=none;
Cloud / SaaS Services Detected
Proofpoint Essentials
Leak Screenshot:
