Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Cayman National Bank

Group: killsec

Discovered by ransomware.live: 2025-03-21

Estimated attack date: 2025-03-21

Country: KY

Description:

N/A

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 69

Third Party Employee Credentials: 1

External Attack Surface: 11

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse domainit.com
  • webmaster caymannational.com
  • hostmaster domainit.com
MX Records
  • mail.caymannational.com.
TXT Records
  • _azzzjawyazzbk7zs2jc1yrtcnohz6p7
  • _7i1n073jzv4sjwz7w3jyc3gvuk7o59a
  • _r58h90fabgums3on8k28lq0j9kmsefk
  • ny718g9pqrfvcb4qmlpfxn3yhpd7bf7s
  • kf4cnjjl4y71btds0chlc67r5wccffqx
  • 8wt86zz70y7mfvk69ftdbw918kc8218t
  • MS=ms65375935
  • sk849slkc3zjylg8dtgg09hw13pyxlsw
  • _qmy6w1qoqcgwaauz1gf701pxuftzqzp
  • _gpatfqasvg5o5jpt6azwuyq5429lnbq
  • 0wtvmdw4kj3lp2vy3vpdm640ld82rb88
  • _xzpgosfrx9o4o9cbn0pvqu2zrm49dhc
  • google-site-verification=EZ6c9ZMeEpqAuX3jQcKrJk5VYhy9cndXz-QQ389-Jnc
  • v=spf1 ip4:216.144.87.34/32 ip4:162.211.137.174/32 ip4:45.79.43.126/32 ip4:209.27.60.149/31 ip4:5.61.117.0/24 include:spf.protection.outlook.com -all
  • _0sj6lb82i4e9tqd6f42ru1acoleqfge
  • _ufs7kxk9hdagdkmiw3m6tfzkvjoywd1
  • g5ps4f43qpry59gyhj9tt75q2n61w91c
  • s7jwtx26nzl9fgf44493wx9g0x37pw38
  • h4z4vv9tnp270g5vrhtv4wj5qbym1s9q
  • google-site-verification=DDV_lm4l_Y26sJhwa_sum3VyQeUSaMtpQgSXWDK28sc
  • google-site-verification=Ny5m4dVJMcTmK8L2yFxIWrVmYYP1TfbaBGPACAJrCSs
  • 55k4k5bnrf10t895xmlq4qb6dz9syd7d
  • atlassian-domain-verification=ZvBgUgcDmRFzNaFpY9uw2zaC3hyGD5CaBo7nOgIOKSUwQFmQRfROAjNa9FlYAQkY
  • MS=5925AADBB75F58DE0EB2F0B713C9C07BA20539E6
Cloud / SaaS Services Detected
Atlassian Microsoft 365

Leak Screenshot:

Leak Screenshot