Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Saudia MRO

Group: 8base

Discovered by ransomware.live: 2024-02-28

Estimated attack date: 2024-02-28

Country: SA

Description:

Proud to be partnered with the national airline of Saudi Arabia, Saudia Technic (formerly SAEI) serves our regional and global clients from a network of more than 100 locations around the globe. Saudia Technic provides end-to-end aircraft maintenance, repair and overhaul solutions.saudiamro.com


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mxa-002b6e02.gslb.pphosted.com.
  • mxb-002b6e02.gslb.pphosted.com.
TXT Records
  • ms-domain-verification=69eafe2d-5f8d-45b4-bbd6-951839b71e38
  • smartsheet-site-validation=3oVpA1GdHBLPz4hu9vhxzPpPMIoccjcl
  • v=spf1 a ip4:193.122.64.79 ip4:130.61.235.206 mx ip4:185.164.236.0/22 include:spf.protection.outlook.com ip4:66.159.232.46 ip4:143.55.149.186 -all
  • v=verifydomain MS=2034507
  • _globalsign-domain-verification=cB1EhaYHb_P8hmDmkkI65pfQbYSiXhzgXgp45igyd7
  • docusign=2eda0fd0-84e4-4af4-8235-2cdf34ac181f
Cloud / SaaS Services Detected
Microsoft 365 DocuSign

Leak Screenshot:

Leak Screenshot

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.