Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Ministry of Education - Jordan

Group: hellcat

Discovered by ransomware.live: 2024-11-04

Estimated attack date: 2024-11-04

Country: JO

Description:

We have successfully accessed and compromised a range of sensitive documents from Jordan's Ministry of Education. This includes images of identification cards, divorce papers, and various letters addressed to the Minister.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 2

Compromised Users: 15780

Third Party Employee Credentials: 36

External Attack Surface: 102


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • mx02.govmail.gov.jo.
  • mx01.govmail.gov.jo.
TXT Records
  • 422gn74d0799sn3s9s7ntkk6my60g4b5
  • knz4sjx0vx1zn6d7240f1vd4dszg728k
  • v=spf1 mx ip4:193.188.64.154 ip4:193.188.64.155 ip4:193.188.64.223 -all
  • google-site-verification=WNOk3272GTjiTqjV397dAoLICtkmCeQ8owdIyEzatSc
  • _e3l0445lhvqz7sdumy8d33veckj6h6l
  • 5ds5qscndtc3wbrjz2yqrlhtknqkrkz7
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.