Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo HOYA Corporation

Group: hunters

Discovered by ransomware.live: 2024-07-16

Estimated attack date: 2024-07-16

Country: JP

Description:

Country : Japan - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 40

Compromised Users: 10

Third Party Employee Credentials: 20

External Attack Surface: 8


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse 1api.net
  • info domain-contact.org
  • dommaster mark-i.jp
MX Records
  • hoya-com.mail.protection.outlook.com.
TXT Records
  • MS=ms36685148
  • j7045lttlve0oln3o92h0j12j3
  • apple-domain-verification=ECTtVdfCX2qeBy8o
  • brevo-code:980c2ba958702270d3e74d9d465cb073
  • MS=ms45219063
  • onetrust-domain-verification=5bfc62aa422446fdb3900d99c5dc6d3e
  • v=spf1 include:fsspfus.freshemail.io include:_spf.salesforce.com include:spf.mailjet.com include:spfa.hoya.com include:sendgrid.net include:servers.mcsv.net include:spf.protection.outlook.com ip4:147.154.189.192/26 ip4:102.221.51.105 -all
  • atlassian-domain-verification=uHD9lqPrj4cffLNbYSb4V85Cs1FD923YNs/2DSc03owk1ota2snoGbQ2Nt0MDWvE
Cloud / SaaS Services Detected
Apple Atlassian Microsoft 365 Salesforce Mailjet SendGrid OneTrust

Leak Screenshot:

Leak Screenshot