Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Kenya Airports Authority

Group: medusa

Discovered by ransomware.live: 2023-03-01

Estimated attack date: 2023-03-01

Country: KE

Description:

Kenya Airports Authority (KAA) is the owner and operator of nine civilian airports and airstrips in Kenya. Kenya Airports Authority was established by an act of Parliament in 1992, by the ruling Kenya African National Union government. The KAA Act, Cap 395, provides for the powers and functions of the Authority. Its head office is on the property of Jomo Kenyatta International Airport in Embakasi, Nairobi.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • websupport icta.go.ke
MX Records
  • mail.kaa.go.ke.
  • d333531.b.ess.de.barracudanetworks.com.
  • mailgate.kaa.go.ke.
  • d333531.a.ess.de.barracudanetworks.com.
TXT Records
  • v=spf1 +a +mx include:_spf.google.com ip4:41.220.231.165 ip4:41.72.206.122 ip4:197.248.27.101 ip4:41.220.231.166 include:spf.ess.de.barracudanetworks.com a:mailgate.kaa.go.ke ~all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot