Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Samera Health

Group: Qilin

Discovered by ransomware.live: 2025-10-22

Estimated attack date: 2025-10-22

Country: US

Description:

Samera Health is a Third Party Administrator (TPA) that provides Health, Dental, and Vision benefits for employer groups. The company focuses on delivering innovative and cost-saving solutions while ensuring a positive customer experience thr ...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 2

Third Party Employee Credentials: 0

External Attack Surface: 2

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mx1-us1.ppe-hosted.com.
  • mx2-us1.ppe-hosted.com.
TXT Records
  • fn3cmt3tgb93qu42dfumq5eqas
  • google-site-verification=ZYMtLMTh9ynSqA-CUywaKx1Zgd8hNHUR5WnMq6bcgUk
  • v=spf1 a:dispatch-us.ppe-hosted.com include:spf.protection.outlook.com ip4:97.75.164.239 ip4:54.149.165.194 ip4:104.192.32.80 ~all
Cloud / SaaS Services Detected
Proofpoint Essentials

Leak Screenshot:

Leak Screenshot