Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo SFA Engineering

Group: underground

Discovered by ransomware.live: 2025-08-15

Estimated attack date: 2025-08-15

Country: KR

Description:

Revenue: $1.7 Billion Type: Industry Size: 2,3 TBytes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 9

Compromised Users: 61

Third Party Employee Credentials: 1

External Attack Surface: 24

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • spam.sfa.co.kr.
TXT Records
  • v=spf1 ip4:61.81.122.133 ip4:61.81.122.143 ip4:61.81.122.200 include:spf.protection.outlook.com ~all
  • openai-domain-verification=dv-TtnmnK4iHGR8jJQveWFw5X8h
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot