Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

foremostgroups.com

foremostgroups.com

Discovered 2023-10-10 20:35 UTC
Est. attack date 2023-10-10

Description:

Revenue zoominfo 500kk+Big holdingWe have all legal data, budgets, forecasts, bank, finance data, salaries, insurances, passports, confidential agreements with customers, audit private info, all human resources data, all consolidation reports...

Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 1


External Attack Surface: 2


Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operationsweb.com
MX Records
  • foremostgroups-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • d6u4dvme06jdqlh6f5ua9f0pbc
  • v=spf1 include:spf-008fa001.pphosted.com include:spf.protection.outlook.com -all
  • mscid=l9r1UCbBgzGm1cHfdiBKRPpAoaOxBmczgbQJ1StN/4aU2aWnxiphWZPghS4ZQ3duz5qUsZWtM1J6J0EExIfJhg==
  • T1KC8QQ3C85QCWIWD15FBXGYGZ93QMSIBMJI477Q
  • MS=98F6D7A89B2E0628823A71F5B351EA2FAE80E94E
Cloud / SaaS Services Detected
Proofpoint

Leak Screenshot:

Leak Screenshot