Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Logo

HUSKY

husky.ca
Group Blackbasta
Discovered 2023-04-04
Est. attack date 2023-04-04
Country CA
City Toronto

Description:

Whether your company is a start-up or well-established business, you didn’t get where you are by compromising on quality. We didn’t get to be a world leader in injection molding systems for consumer goods, medical devices, beverage and automotive products that way either. Husky systems, hot runners, controllers, auxiliaries, components and services have always been about return on investment, long-term value and end-to-end solutions for customers.That is why we will always prove to be the better value over less advanced or minimally engineered systems. These products often cannot deliver the higher performance, efficiency or reliability of a Husky. And that could cost you more than you expected—in lost productivity, profitability and, most importantly, the trust of your own customers.SITE: https://www.husky.ca Address 500 Queen Street SouthBolton, Ontario, L7E 5S5Canada
Infostealer activity detected by HudsonRock

Compromised Employees: 6

Compromised Users: 937

Third Party Employee Credentials: 15

External Attack Surface: 21

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse@godaddy.com
  • webmaster@husky.ca
MX Records
  • mxa-0078a601.gslb.pphosted.com.
  • mxb-0078a601.gslb.pphosted.com.
TXT Records
  • solarwinds-service0desk-verification=c6a51d1d304f669878ade5fbde92c06d
  • solarwinds-service0desk-verification=d5ab496261502a8d0073cb3dcf75c016
  • 368k4npv34t9t4pgfg10dvj3n867mm3m
  • 9j7qfx594dbwrgv7w0d582p7fjt7vlwm
  • apple-domain-verification=rWrTdFAXGwUGLqmU
  • apple-domain-verification=uqXNFpmfvTcsAphZ
  • Dynatrace-site-verification=9e2a9ec1-46d7-4e2c-83b9-9a2ff7336b8f__mv66lf79n3j0ob2cika8oelbf8
  • fV8Vcwit38PquBPJqf5a2wPKEvtq/RXBefYvUdFbiyfAYgE3XhJQkT0ByvZiaRcaRbEXVncZf7cZ5wYOrmoQVQ==
  • miro-verification=5821cc0a981f478551df42b40d19cadb84774cac
  • MS=ms19059863
  • pkbnhjxr83fkyb05gqdy6qs4p9hrx8ww
  • uB20441QxUKS1
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
  • teamviewer-sso-verification=8b758ff397d142c5ab7ca5a5bc9e2c4d
  • ync912v2704dtpqfnsphqrsn8jbgm66y
  • _6yoriwbkpxh1cuctlmtlvkg90vit2by
  • _2iifu3l08ol0cnx64m0c8khz9p589sn
Cloud / SaaS Services Detected
Apple Microsoft 365 Miro Teamviewer Proofpoint

Leak Screenshot:

Leak Screenshot

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.