International Busines Service
International Busines Service
Group: crypto24
Discovered by ransomware.live: 2025-04-08
Estimated attack date: 2025-04-08
Country:
Description:
Identity cards including front and back of about 3,000 people (image, pdf), HR reports, Pay documents
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 5
External Attack Surface: 1
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse enom.com
MX Records
- d185998b.ess.barracudanetworks.com.
- d185998a.ess.barracudanetworks.com.
TXT Records
- v=spf1 include:spf.protection.outlook.com -all
- MS=ms43835654
- g508fg7g99fb2e28tq558mbr4a
- s6qlda6ik2717mvttad8q31ubl
- caea0u90fiutd21kpcltjj7el0
- dfi0te6leb01r9utgf8kqq3sg8
Cloud / SaaS Services Detected
Microsoft 365