LEARN is a Regional Educational Service Center
LEARN is a Regional Educational Service Center
Group: blacknevas
Discovered by ransomware.live: 2025-08-06
Estimated attack date: 2025-05-21
Country:
Description:
LEARN is a Regional Educational Service Center working with and for its member districts to improve the quality of public education for all learners
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 3
Third Party Employee Credentials: 0
External Attack Surface: 2
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- learn-k12-ct-us.mail.protection.outlook.com.
TXT Records
- v=spf1 include:_spf.google.com include:customerspf.schoolmessenger.com include:spf.protection.outlook.com ip4:208.64.237.225 ip4:208.64.239.226 include:mailgun.org ~all
- mandrill_verify.MBSG5oJA9HnqqT9ZAyRk2g
- MS=ms50968468
- google-site-verification=Bk1a4-GU00jkZwfsrvJloJgNpvc7nFbFoEe5yeg9l6g
- twtKbWt3PVBqL3elZPND+LPikjuQ963cNplKTMNVJYnkriFH+0oauiQzBRqfVI3vPrK8zcSoFJ0biLhOtTFC4Q==
- apple-domain-verification=ybtHSWwpUxKqJEMy
Cloud / SaaS Services Detected
Apple
Mailchimp
Mailgun
Leak Screenshot:
