Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

SPGus#####

spgusa.com

Group Clop
Discovered 2024-12-24 23:05 UTC
Est. attack date 2024-12-24
Country US
Duplicate Entry
This victim has been identified as a duplicate of another entry in our database. However, this may not always be the case: the same organization can be targeted multiple times by the same or different ransomware groups, which may result in separate legitimate entries. Search for related entries

Description:

Presumed victim name: SPG USA - Cl0p announcement. We have data of many companies who use cleo. Our teams are reaching and calling your company and provide your special secret chat.

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • 5487516f42baee6ed1c2cba32cbf1305f9fa8b17c5337b0ca48037d97281a62bspgusa.com.whoisproxy.org
  • trustandsafetysupport.aws.com
  • 5487516f42baee6ed1c2cba32cbf130568888db198d67b7b711ff29730714a01spgusa.com.whoisproxy.org
  • 5487516f42baee6ed1c2cba32cbf130501b8079a637f7ba219e60a3bcc3c65b3spgusa.com.whoisproxy.org
  • 5487516f42baee6ed1c2cba32cbf1305f069cc8a8b34512e25844e3b85798210spgusa.com.whoisproxy.org
MX Records
  • spgusa-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • google-site-verification=HyybhpBLZdfskagjcM4cUNGwYHTsF_FjDEc3Dj-6TsY
  • google-site-verification=IC8xWgC0ES2o_3rartH6HiOzB-bwIrvkEFGSGawg_JU
  • google-site-verification=_xnl-yhgkjuBphjAatbxuP7svvuy1ex0FPIOnccvQU4
  • lovable_verification=08bSQ6lKtk69WUXDjHCa
  • v=spf1 include:spf.protection.outlook.com include:west.spf.spgusa.com include:aws.spf.spgusa.com include:emailus.freshservice.com include:spf.emailsignatures365.com include:spf.exclaimer.net ~all
  • MS=ms31566424
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot