Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks


Group Cactus
Discovered 2023-07-20 12:48 UTC
Est. attack date 2023-07-20

Description:

Imagination is an independent experience company with 12 offices worldwide. We specialise in designing experiences which change how people feel, think and act.

Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 0

Third Party Employee Credentials: 9


External Attack Surface: 0


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • 1288cbd40f942f171b13e7e258a0b834f759a2999ee1e51eec50dd590697c5fbimagination.com.whoisproxy.org
  • 1288cbd40f942f171b13e7e258a0b8348e7f21afdee94b6217c30c4c8268bc3fimagination.com.whoisproxy.org
  • trustandsafetysupport.aws.com
  • 1288cbd40f942f171b13e7e258a0b834a5a9f77e73c36f232aa903c8539a30afimagination.com.whoisproxy.org
  • 1288cbd40f942f171b13e7e258a0b83405c90dc9f75f51f94e84d67e1b14733fimagination.com.whoisproxy.org
MX Records
  • aspmx.l.google.com. Google Workspace
  • alt3.aspmx.l.google.com. Google Workspace
  • alt4.aspmx.l.google.com. Google Workspace
  • alt1.aspmx.l.google.com. Google Workspace
  • alt2.aspmx.l.google.com. Google Workspace
TXT Records
  • atlassian-domain-verification=9n1dZGcUH6pRCe7Y05hglbJorE1XG6B/6c07JYJz/ZYVvxWvqnK5kzASmpRXzQ8F
  • detectify-verification=28a76893cc012e8ca9224dd29cec638c
  • docusign=b1833283-7882-4e41-8ab8-523b3ee5b054
  • google-site-verification=ELieoMWD1vm4NlZwUrL8KJu71AttfS6jH6erv-2n4r8
  • google-site-verification=jVaWty86659yPH6mMwBRK3IMvS3CyElRGpuosAlJ21k
  • google-site-verification=xJ2PeRD9HHsVpRpzeQoOLXIAYwWdlRjx2ZN69imOWBE
  • v=spf1 include:_spf.google.com include:servers.mcsv.net include:mail.zendesk.com ~all
  • 3ck5qnds338sipup2585du5pg7
  • apple-domain-verification=xBwcCMF0lsdlzX0Q
Cloud / SaaS Services Detected
Apple Atlassian Mailchimp Zendesk DocuSign

Leak Screenshot:

Leak Screenshot