City of Victorville
City of Victorville
Group: noescape
Discovered by ransomware.live: 2023-10-24
Estimated attack date: 2023-10-23
Country:
Description:
Located in Southern California at the high-point between Los Angeles and Las Vegas, Victorville is the leading city for both industry and retail in the High Desert region. ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 29
Third Party Employee Credentials: 0
External Attack Surface: 10
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- tthomas victorvilleca.gov
MX Records
- 10\032feedback-smtp.us-east-1.amazonses.com.
- mx2.hc5097-26.iphmx.com.
- 10\032feedback-smtp.us-west-2.amazonses.com.
- mx1.hc5097-26.iphmx.com.
TXT Records
- bvfat7498h1ttata8lvd7qh653
- v=spf1 mx a ip4:24.182.14.220/32 ip4:24.182.14.221/32 ip4:24.182.14.252/32 ip4:24.182.14.251/32 " "\010ip4:24.182.14.226/32 exists:%{i}.spf.hc5097-26.iphmx.com include:spf.dynect.net " "\010include:spf.ess.barracudanetworks.com include:spf.protection.outlook.com include:dnsexit.com include:public.govdelivery.com include:spf.mandrillapp.com" "\010 Mx:victorvilleca.gov ~all
- H9GEeid2tlBXvvqemc2H4OiXJp3qYXWAvhhA2+Z4kgJqvWnyA+xGKT5iZtN9xGOyOTrCjxYpyvAkbXZFZd4LTg==
- cisco-ci-domain-verification=3154f47d54c8d275727c622105d0e3da97699fd37db82b69ed7b0af9cced6a36
- v=spf1 include:amazonses.com ~all
- apple-domain-verification=aIHwld4uw0hXUvDi
- duo_sso_verification=YT34QnEnmRlChcsoSzlfX9RZcP8vFA5GdwajueeXQJ02haHz72CLDbRLv7b7a458
- MS=ms61302239
- T4MJNH67
- ZOOM_verify_TyeNpFl9R0SquFs-iX4Nmw
Cloud / SaaS Services Detected
Apple
Amazon SES/WorkMail
Microsoft 365
Mandrill
Cisco
Cisco Duo
Zoom
Leak Screenshot:
