Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

dso.org

dso.org

Discovered 2024-04-19 11:25 UTC
Est. attack date 2023-09-24
Duplicate Entry
This victim has been identified as a duplicate of another entry in our database. However, this may not always be the case: the same organization can be targeted multiple times by the same or different ransomware groups, which may result in separate legitimate entries. Search for related entries

Description:

More information in our telegram channel https://t.me/snatch_team Persons responsible for data leakage:+1 313-576-5111+1 313-576-5100;Linda Lutz:CFO, VP+1 313-576-5190llutz@dso.org;Jill Elder:Chief Development Officer, CRO, VP+1 248-991-3908+1 313-576-5484jelder@dso.org;Phillip Wm. Fisher:Chairman+1 248-867-8211phillipfisher@dso.org;Leslie Groves:Major Gifts Officer+1 248-881-4909lgroves@dso.org;Tina Casoli:Assistant VPina.casoli@dso.org;Nicki Inman:Senior Director+1 313-576-5595ninman@dso.org;Hannah Lozon:Senior Director of Talent & Culture Directorhlozon@dso.org;Ralph Skiano:Principalrskiano@dso.org;Marilou

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusegodaddy.com
MX Records
  • d178242b.ess.barracudanetworks.com. Barracuda
  • d178242a.ess.barracudanetworks.com. Barracuda
TXT Records
  • v=spf1 include:spf.ess.barracudanetworks.com include:spf.protection.outlook.com -all
  • bw=MZ7JdqsVsWbLEw8UVAzCbzvUBdEMGkIRge88a2B7zA75
  • facebook-domain-verification=bd661xtkqmtspu9rfh7qdhy9it47o9
  • google-site-verification=ftfmZaJ70PACITkN41PKgegZWkfnUP4n09opAQZ2G50
  • RX3IFQNQXZF7MHYRRIDOOFA9W97WYRMBWF23IJHGN
  • Foxit-domain-verification=249164ffe9684b7b0e8669a170384bea
  • ZOOM_verify_fIhtKXBiLzWOjOAbZarGGu
  • apple-domain-verification=n0eOt2NIJYxZNn4s
  • hpe-greenlake-domain-verification=4538354b54732d656a59454354627975517a38762d6336474f69453656687957
  • GjiVTXx3HJsndG5dr0eLrFG9X/ENw6YkdYRBg85YzTOzFDFW09EsgMj29mmcS/rH65SQK3MJy6px8f++pnRGoA==
  • v=verifydomain MS=4064629
Cloud / SaaS Services Detected
Apple Microsoft 365 Zoom

Leak Screenshot:

Leak Screenshot