City of McKinney
City of McKinney
Group: incransom
Discovered by ransomware.live: 2025-02-15
Estimated attack date: 2025-02-09
Country:
Description:
McKinney Economic Development Corporation works in conjunction with the City of McKinney, Texas to promote and provide economic development for the city.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 12
Compromised Users: 74
Third Party Employee Credentials: 12
External Attack Surface: 28
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse support.gandi.net
MX Records
- mckinneytexas-org.mail.protection.outlook.com.
TXT Records
- cisco-ci-domain-verification=616f719359071b38c7533eba7aff1b00532544ff25420e1627f4113f93abd7e1
- docusign=de18dd60-0e7e-4fe5-8d1d-0377a9e29731
- facebook-domain-verification=nwj06w24bvbu48sf6x9ofwjd8zmmor
- google-site-verification=rqKuFaiayULznuRXTnsxuchSY3h_jPQgqgW9MuWyuLc
- v=spf1 include:spf.protection.outlook.com include:spf.smtp2go.com include:amazonses.com include:spf_c.oraclecloud.com include:_xnspf.paymentus.com
- HMmZ/zD9lc1JKnyIo2nxP5C1CQiehhons403/7tQESE4SBiiN2m/2FwIy+9P6mLE3qKXH/COiGYmlOvOXOLUWw==
- apple-domain-verification=LFMRhHVg4vKYsJHA
Cloud / SaaS Services Detected
Apple
Amazon SES/WorkMail
Oracle Cloud
Cisco
DocuSign
Leak Screenshot:
