This cluster centers on 3287 connected domains tagged as HijackLoader, RemcosRAT, screenconnect. 617 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus. The connected infrastructure includes 1649 phone numbers (5408463620, 8552597377, 8007873903) with 7110 FTC complaints; 143 companies (Informative LLC, HomePlus Corporation, Doral Capital Corporation) with 8547081 CFPB complaints; 807 email addresses (kellymoore_64@yahoo.com, schantzsybg7@...
Phone Number
(212) 353-2428
Last reported Mar 25, 2026
Low Activity
- 1 FTC complaints filed against this number
- 1 community report from users
- Most reports: Calls pretending to be government, businesses, or family and friends
Campaign Intelligence
Details
Connected Entities
No known connections to other entities yet.
Community Reports
Got a call from (212) 353-2428, saying they were from JPM Chase and they said they were calling because someone was trying to open an account in my name with the bank and had Zelled two sums of money from my account to someone named Jessica White in Long Beach, California. They gave me a case number (JPM**********) and two codes for the transactions (CC******** and CC********). I realized this was a scam after a bit and hung up. [BBB Scam Type: Bank/Credit Card Company Imposter] [Business: Unknown] [Location: NY, USA- 10010]
8 days ago
Share Your Experience
What's Your Exposure?
Know your risk exposure to this message with a Thorough Analysis. It returns a detailed report covering the complaint history, your data breach exposure, related scam entities, and risk signals tied to this email message. Check the box and enter your email address now.
Proton Pass — Unique passwords for every account
After a breach, reused passwords let attackers into your other accounts. Proton Pass generates and stores a unique password for each one.
Try Proton Pass freeAffiliate link. We may earn a commission.