HELUKABEL
HELUKABEL
Group: nova
Discovered by ransomware.live: 2025-04-28
Estimated attack date: 2025-04-23
Country:
Description:
The website www.helukabel.de is the official online presence of HELUKABEL GmbH, a German-based global leader in the manufacturing ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 7
Third Party Employee Credentials: 0
External Attack Surface: 4
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- mailproxy2.helukabel.de.
- mailproxy1.helukabel.de.
TXT Records
- m42=2b64728d-c0e4-4125-80f1-f35481d45d20
- atlassian-domain-verification=CJgPXlHAKSnV5RVQN4IkFeEEA7Bvlw8bJFpA36NO5Yk0LKhMvFCzAXifKm22odiH
- apple-domain-verification=hfUUMuvoGy1EBPvd
- v=spf1 mx a a:mailproxy1.helukabel.de a:mailproxy2.helukabel.de a:hybrid.helukabel.de ip4:158.181.50.248 include:spf.protection.outlook.com include:_spf.rexx-suite.com include:inxserver.com -all
- za7NH8QZNviY6E370asMWCt6E1lDtjfH4zFQwm7L6t31TFPwQq/Tx+y4ekQSVs9xlD8f7XfajKWyL4DxofI6Bw==
- google-site-verification=O0wTUlG6jGrxzDp8F_8jeIHEiimFJPjd1WTBzaOFaZc
- google-site-verification=mjz8eNJp-ftXAut2Zu2WoAyq4oMGw68KxTl9c1OAfi0
- atlassian-sending-domain-verification=aeb3d142-d9f9-4411-9015-1334d3d477fd
- 948k4nvcn9bsdk6lkkjrcwsc42b21v05
- docusign=c2cf42c4-aaaa-4c82-a1cf-778e8ce8de9e
- google-site-verification=aQC-FjVSIapD9nj84-TX5PjXeG9avHP5f4aIa324sEE
- google-site-verification=Q8AQxoF1RaebtPRxH94asYcu26cM045O-kmWHjUjIdc
- 5MUHf89LSgYfMgzvtbFY/Bb1RxOwaiK1ZcPNQC1Tl1lMAuuJHEsJwPbwf5TrmV/L60Ue+tdufYrrEQZCQGtI5g==
Cloud / SaaS Services Detected
Apple
Atlassian
DocuSign
Leak Screenshot:
