Investigative journalist Brian Krebs first reported the attack on his website “Krebs on Security,” which explained how Wipro’s IT systems were compromised and used to attack the company’s customers. After contacting Wipro, Krebs followed up on his article by publishing updates on the breach. While Wipro was generally close-lipped on the incident, some of the victims breached through Wipro spoke with him and provided Indicators of Compromise (IOCs) they uncovered. Krebs proceeded to publish this small set of IOCs on his website

REFERENCES:
https://www.riskiq.com/gift-cardsharks-iocs/
https://cdn.riskiq.com/wp-content/uploads/2019/06/Gift-Cardsharks-Intelligence-Report-2019-RiskIQ.pdf