Shamir Medical Center
Shamir Medical Center
Group: Qilin
Discovered by ransomware.live: 2025-10-02
Estimated attack date: 2025-10-02
Country:
Description:
We have successfully infiltrated and gained full access to your systems at Shamir Hospital, the largest medical facility in Israel. Over the course of our operation, we have exfiltrated approximately 8 terabytes of sensitive and confidential ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 7
Compromised Users: 34
Third Party Employee Credentials: 0
External Attack Surface: 10
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse enom.com
MX Records
- mx2.zoho.com.
- mx.zoho.com.
TXT Records
- google-site-verification=d4El3chmP-Y5HsUUkx3493kpploZ8r7nalb5g_8g7vM
- v=spf1 mx a ip4:62.219.21.31 ip4:31.168.46.49 include:zoho.com -all
- _globalsign-domain-verification=HXyecr9ZTCHKUrCMYrO5GEzvaTG-WBu61SNTT4b_ds
- rovag_verification_token=16286FA9B1CC44C6931DD36F185396DC
- 00d3z000001brprea4
- globalsign-domain-verification=4B6708F3E8EF8DE4302B1BFACAF95725
- zoho-verification=zb49060843.zmverify.zoho.com
Cloud / SaaS Services Detected
Zoho Campaigns
Zoho Mail
Leak Screenshot:
