Ransomware.live - Victim: Jamjoom Pharma

Description:

[AI generated] Jamjoom Pharma is a leading pharmaceutical company based in Jeddah, Saudi Arabia. Formed in 2000, it's part of the diverse Jamjoom Group. The company develops, manufactures, and distributes a wide variety of prescription drugs and over-the-counter products. They focus on therapeutic areas such as dermatology, antibiotics, cardiovascular, gastroenterology, and neuropsychiatry, serving both domestic and international markets.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 4

Compromised Users: 40

Third Party Employee Credentials: 35

External Attack Surface: 18

Infostealer Distribution

WHOIS Emails

domain.operations web.com

MX Records

mx-02-eu-west-1.prod.hydra.sophos.com.
mx-01-eu-west-1.prod.hydra.sophos.com.

TXT Records

duo_sso_verification=y9iAJ57U9fQeNgv8htWLXwuT7TQ6NOZ5mMeoCoXn3fUtPwGbltVCWorJ1bImRE2M
apple-domain-verification=m5oXMNMNeZ5dxyVz
v=spf1 include:_spf.prod.hydra.sophos.com include:spf-de.emailsignatures365.com ~all
sophos-domain-verification=3c827383f5ed0416e4fe089758c51b00a4365471
MS=ms11930259

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.