Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo AutoCanada

Group: medusa

Discovered by ransomware.live: 2025-03-23

Estimated attack date: 2025-03-23

Country: CA

Ransom: $ 2,000,000

Description:

AutoCanada, founded in 2006 and headquartered in Edmonton, Alberta, is a new and used car dealer that also provides parts and servicing. AutoCanada corporate office is located in 200-15511 123 Ave NW, Edmonton, Alberta, T5V 0C3, Canada and has 4,041 employees. Revnue: 4.6B The total amount of data leakage is 455.90 GB.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 1

External Attack Surface: 0


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • compliance tucows.com
  • Domainadmin autocan.ca
MX Records
  • autocan-ca.mail.protection.outlook.com.
TXT Records
  • v=spf1 include:_u.autocan.ca._spf.dmarclh.com include:spf.protection.outlook.com include:mailgun.org ~all
  • google-site-verification=CQnUqQfHwxbKgwr_B_jFdTX7s1yc24DccJg73kZ3OP4
  • <<GIE-869-ueo>>
  • miro-verification=fa985be4a0b3532d0ead4d452595fe1c4ab26daa
  • lpk0nkmgo437v4uafhjvo41gfd
  • sophos-domain-verification=56271a7a568cb8fa31bd48f8c769ff2b143d287879aa521ae0b5c9a416432f77
  • qdt67ppm30ljb4bvruss950t0b
Cloud / SaaS Services Detected
Miro Mailgun Sophos

Leak Screenshot:

Leak Screenshot