Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Chicony Electronics

Group: hunters

Discovered by ransomware.live: 2024-04-15

Estimated attack date: 2024-04-15

Country: TW

Description:

Country : Taiwan - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 4

Compromised Users: 11

Third Party Employee Credentials: 11

External Attack Surface: 4


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mx0a-002dc101.pphosted.com.
  • gw.chicony.com.
  • mx0b-002dc101.pphosted.com.
TXT Records
  • ZA=UoB63uUty7VmKg1l530cnw==
  • google-site-verification=KpZDYR84lZQtH9MOlQGd9m9be7Hms4Lbuhh9PL31vtU
  • v=spf1 ip4:124.9.53.165 ip4:210.65.152.1 ip4:220.130.150.18 ip4:210.65.152.5 ip4:49.229.29.60 ip4:148.163.135.195 ip4:148.163.139.195 include:_spf.google.com include:amazonses.com ~all
  • google-site-verification=jMWhLkR2JorWDeT6bfAOf1FPi41Z_gImx5Aw7r_uwPA
Cloud / SaaS Services Detected
Amazon SES/WorkMail

Leak Screenshot:

Leak Screenshot