Morgenstern AG
Morgenstern AG
Group: qilin
Discovered by ransomware.live: 2025-08-15
Estimated attack date: 2025-08-15
Country:
Description:
Morgenstern AG, Germany specializes in providing comprehensive print and document solutions, including consulting services and digital workspace implementations. On August 7, the company's website reported that it had “successfully repelled ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 2
Third Party Employee Credentials: 1
External Attack Surface: 2
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- gw117166.fortimail.com.
TXT Records
- v=spf1 ip4:217.5.215.66 ip4:88.79.234.150 ip4:80.190.68.10 include:spf.protection.outlook.com include:_spf.atlassian.net a:gw117166.fortimail.com ~all
- brevo-code:78978cc973bb8425b23e53cef218ae41
- atlassian-sending-domain-verification=df4e1eea-00c9-4fc1-b037-28d953159f41
- google-site-verification=FWUKytigEN5bjxm-19OD7in8e5EV25AKoZARfPNG9RE
- atlassian-domain-verification=a6IKaAr4uPnXbZ0WtwM4otOMYji9tLmdaB5KAiBSMaH79sU7HyNJD1IdWsxQVNhx
- apple-domain-verification=uT9oqHpbir6yxjRO
- nts8lyfkYmq6oJy7nTOubLuhN1JwwfkIAUaSBHDB4zeWiAY\013\010/gh7qGcbSAIc4YxyiuKjFwxMMg3C7/XIcy3Go1A==
- facebook-domain-verification=wdze9ou50e1bhljwu8f46yjszuo6x6
- atlassian-sending-domain-verification=66e228f2-1162-493b-9a43-02d827d71260
- google-site-verification=IUi5r8IgDGUpuAmTF5HOYT\013\010MIhS3_sgOi6GAHRSHCpVQ
Cloud / SaaS Services Detected
Apple
Atlassian
Leak Screenshot:
