Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo First Federal Savings & Loan

Group: play

Discovered by ransomware.live: 2025-02-25

Estimated attack date: 2025-02-07

Country: US

Description:

United States

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • d107790a.ess.barracudanetworks.com.
  • d107790b.ess.barracudanetworks.com.
TXT Records
  • frkj5hw607d8mljx8zyp75rv59qbh4c0
  • 5d2ld38g0rldp6rfhj24ffh4zkdr38dy
  • v=spf1 include:spf.protection.outlook.com include:spf.ess.barracudanetworks.com include:spf.cashedge.com include:mailgun.org include:_spf2.finastra.com ip4:67.210.88.0/24 ip4:63.156.189.0/24 -all
  • MS=ms15027136
Cloud / SaaS Services Detected
Microsoft 365 Mailgun

Leak Screenshot:

Leak Screenshot