Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Ihara

Group: nova

Discovered by ransomware.live: 2025-04-28

Estimated attack date: 2025-03-27

Country: BR

Description:

​​​​​Data has been leaked shame on you and all who work with you

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 18

Compromised Users: 6

Third Party Employee Credentials: 23

External Attack Surface: 23

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • ihara-com-br.mail.protection.outlook.com.
TXT Records
  • google-site-verification=PhDSIazNzC0V_v-rroFv3OMTM-dfYnq64F_Hz0n-UM4
  • dnkqhaei5rd5se703ob6gb51rl
  • gu3veg9aqddb0ae3vhj27rbaol
  • aa7f1qp8rifombfjtj3bqcj6cv
  • adobe-idp-site-verification=6c7b08fc5f6b65836b7d71719bf2c72b4f295942e2c293ad8804abb473e95ce7
  • 4f1ecsv0ad77t2tpf6b1enbn48
  • NDDQES4EX56PEV4AZJZF7SH2J
  • duo48jgniau2oiljb04e51v3fu
  • v=spf1 +a +mx a:outbound-01.ihara.com.br a:outbound-02.ihara.com.br include:spf.protection.outlook.com include:_spf.rdstation.com.br -all
Cloud / SaaS Services Detected
Adobe

Leak Screenshot:

Leak Screenshot