Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Orion Township Public Library

Group: noescape

Discovered by ransomware.live: 2023-11-08

Estimated attack date: 2023-10-28

Description:

Designed to serve a population of 30,000 and house a collection of 100,000 volumes with a capacity for a 200,000 items per year circulation, the new Orion Township Public L...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 5

Third Party Employee Credentials: 0

External Attack Surface: 5


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • orionlibrary-org.mail.protection.outlook.com.
TXT Records
  • MS=8C3E6DDF70B76BF08C952A008A12D2641C6FF384
  • MS=ms31400470
  • apple-domain-verification=htdnXfWl2tn6hF0A
  • google-site-verification=k8K8eHmOcRvkHXWs5L58mNwP0Tb3JmgtXBkcqzLDsjI
  • mr69tt8k6m58aiq4l1l37q381o
  • v=spf1 a:mail.orionlibrary.org include:spf.protection.outlook.com include:smtp.iii.com include:amazonses.com -all
  • f2fam9pa9lrm7rahltt944bdag
  • v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCuFXPNRdNr9El2EwdR2ksilyM2oTknLuasIXqLY2fGKgOmJR8L5buwe0Zh9SbgZlCcfEVRiUNeK6uKvKhrhVMwgVWQvCdXfC5tLwggovCwhYEiNbL/kAciXbSo2Ze8Ey9bFmSSmHTHCs/H7Rx2EyJvJXTcDqZxAYaonrjcR3/j9QIDAQAB
  • google-site-verification=uFpcCvvfa_wz96Fw8An4q5nbevMIEaaR4EA3LbxQHg4
Cloud / SaaS Services Detected
Apple Amazon SES/WorkMail Microsoft 365

Leak Screenshot:

Leak Screenshot