Tulsa International Airport
flytulsa.com
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abusegkg.net
- f1155363ebabead7ac52c8855e9ac7af944d9239privatedomain.gkg.net
MX Records
- us1-smtp-mx2.titanhq.com.
- us1-smtp-mx1.titanhq.com.
TXT Records
- v=spf1 mx a:tait-edge.flytulsa.com ip4:12.175.162.186/28 include:spf.protection.outlook.com ip4:12.175.162.181 ~all
- duo_sso_verification=f6l4MSnqlXx4pTCAbBPJNIJ9ykNLXZXLYXNqsrBUDfFcMSYrbIBNrfaFrsYUVabm
- knowbe4-site-verification=e3a1c1a672e6896c02599c4ce5213f5e
Cloud / SaaS Services Detected
KnowBe4
Cisco Duo
Leak Screenshot:
Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.