Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

SPGus#####

spgusa.com

Group Clop
Discovered 2024-12-24 23:05 UTC
Est. attack date 2024-12-24
Country US
Duplicate Entry
This victim has been identified as a duplicate of another entry in our database. However, this may not always be the case: the same organization can be targeted multiple times by the same or different ransomware groups, which may result in separate legitimate entries. Search for related entries

Description:

Presumed victim name: SPG USA - Cl0p announcement. We have data of many companies who use cleo. Our teams are reaching and calling your company and provide your special secret chat.

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • 49ed18692ef1f45ca0a6191f9a6f32564b5872b6848e9b2a657fc238103f3bc6spgusa.com.whoisproxy.org
  • 49ed18692ef1f45ca0a6191f9a6f325698117628c1d7db871efcb591b554c182spgusa.com.whoisproxy.org
  • 49ed18692ef1f45ca0a6191f9a6f3256a0f58440b520647306177a9b1dd93672spgusa.com.whoisproxy.org
  • 49ed18692ef1f45ca0a6191f9a6f3256813a99dd910e18fa1646c8770011f964spgusa.com.whoisproxy.org
  • trustandsafetysupport.aws.com
MX Records
  • spgusa-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • MS=ms31566424
  • google-site-verification=HyybhpBLZdfskagjcM4cUNGwYHTsF_FjDEc3Dj-6TsY
  • google-site-verification=IC8xWgC0ES2o_3rartH6HiOzB-bwIrvkEFGSGawg_JU
  • google-site-verification=_xnl-yhgkjuBphjAatbxuP7svvuy1ex0FPIOnccvQU4
  • lovable_verification=08bSQ6lKtk69WUXDjHCa
  • v=spf1 include:spf.protection.outlook.com include:west.spf.spgusa.com include:aws.spf.spgusa.com include:emailus.freshservice.com include:spf.emailsignatures365.com include:spf.exclaimer.net ~all
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot