USA2ME
USA2ME
Group: killsec
Discovered by ransomware.live: 2024-12-05
Estimated attack date: 2024-12-05
Country:
Description:
N/A
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 1
Compromised Users: 454
Third Party Employee Credentials: 0
External Attack Surface: 11
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- registrar-abuse cloudflare.com
MX Records
- mx.zoho.com.
- mx2.zoho.com.
- mx3.zoho.com.
TXT Records
- zoho-verification=zb66828302.zmverify.zoho.com
- google-site-verification=dQSznWLswGdKd7JeV1Q4lEum_L8LWiCEdnZAkoTcBrE
- rY1nZ/5Yyaw+aU4yyNfrioo88oUVtMkpXFOA0h7zI0c=
- v=spf1 include:zohomail.com include:_spfcf1.usa2me.com include:amazonses.com include:_spf.google.com -all
Cloud / SaaS Services Detected
Amazon SES/WorkMail
Zoho Campaigns
Leak Screenshot:
