Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo National Health Laboratory Services

Group: blacksuit

Discovered by ransomware.live: 2024-07-05

Estimated attack date: 2024-07-05

Country: ZA

Description:

The National Health Laboratory Service (NHLS) is a large diagnostic pathology service in South Africa

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 19

Compromised Users: 285

Third Party Employee Credentials: 26

External Attack Surface: 10


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • tls.imss.mtnbusiness.co.za.
TXT Records
  • lm4lxmzd8sm6rqfgpcbnmp3vnfky0524
  • wz7n8bztpshhgzgfsglqfhd13wppfm2y
  • 5v6r358b17ws5j8z2hhsvk29tvz33gq2
  • duo_sso_verification=eCXEoWvUv0BIWz4iPb2gfw6iD1fTJtHFqG7Mt8WA7gVi5AN2xxN4EIat01Io0rLS
  • MS=ms77687345
  • MS=52581684235710E1AF7043CF3F55691FE84056CC
  • ek0t3TsJL06K1v0vmcSddku+E4Tbx/kEK+6mv4XUzaVFlTKIvtjVLyDeSX6j8UIPhda8VcTHSqn8sWi6JFuADA==
  • wv9kfncwss6chvyypw2jbycrvrlgtslz
  • v=spf1 include:spf.imss.mtnbusiness.co.za include:spf.protection.outlook.com -all
Cloud / SaaS Services Detected
Microsoft 365 Cisco Duo

Leak Screenshot:

Leak Screenshot