NASA/AOSense
NASA/AOSense
Group: stormous
Discovered by ransomware.live: 2024-10-06
Estimated attack date: 2024-10-05
Country:
Description:
US
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 102
Compromised Users: 29467
Third Party Employee Credentials: 40
External Attack Surface: 143
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- soc nasa.gov
MX Records
- nasa-gov.mail.protection.outlook.com.
TXT Records
- pvv8mevb6qrmqvqi8alhmreg42
- openai-domain-verification=dv-Fbq5PVntP9qLelQPUBKniDjr
- MS=ms93625004
- amazonses:FXFVeQnEO3Wua+aY/H4aOIH3sSwteE+7YpGrwm8kF/s=
- apple-domain-verification=qw51K0kGzRHLbN9S
- openai-domain-verification=dv-CO0ENDLO7EB9V5E4JnmE6pS8
- _pki-validation.nasa.gov; dg5McbORFfQtQhy3ef7HIMVx9Wc:FA2B-9D14-D761-16A8-4A09-DC08-F804-D6B9
- 1HqDXPHdt8JOt02qy6FB+l3+Z1zXScqcPxlE/faXjZLS9FRbVhHCUCHQE2bWofZt2TWKPchjjma3Pqli4FULFw==
- atlassian-sending-domain-verification=4730ddf4-d24e-4a91-9612-cb14998d0e47
- docusign=4025560e-93c9-4920-bb13-849c6fc35d58
- google-site-verification=ZKpcXLqaBX3jND8Fybkvr3MaaOpC_6MRjXBYm0XNkJQ
- uechcfoubh169akghg2214p54n
- HRlHXyx8jXo+9pIaJWFVBPOLVfeI2biAj3VT1woaTFpp05D5/q6AoD5KpUgws539/d2jl8wBJiEr58OEsRVugQ==
- atlassian-domain-verification=oNzRM7G9GIAL/LLP5c7sPOQiAHsHrQ1hKcU7GGZ0ADRZJFhUB/upe935/2RYq/jO
- mj8729pr7k44dx62wwtx5745xr5njzkn
- n39n7frbwnkhcmky2nps779y4ttn61wl
- amazonses:PvUL7T41LO87xjr+2nfgxTu11i75NeT9HzY3xYv82Ko=
- webexdomainverification.1YPST=f98a61ea-b92e-41f2-87aa-5651b2af43b8
- v=spf1 include:_spf-4a.nasa.gov include:_spf-4b.nasa.gov include:_spf-4c.nasa.gov include:_spf-4d.nasa.gov include:_spf-4g.nasa.gov include:_spf-4m.nasa.gov include:_spf-4x.nasa.gov include:_spf-6a.nasa.gov include:spf.protection.outlook.com -all
- nmh1f9tgxhmfmjkshg7qh595drdfgnf1
- google-site-verification=BUxd0xTJY4ZjGohBwKDpNms-yOATz92Y54kgme4eKHs
Cloud / SaaS Services Detected
Apple
Atlassian
Amazon SES/WorkMail
Microsoft 365
DocuSign
Cisco Webex