Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Logo Sibca

Group: Thegentlemen

Discovered by ransomware.live: 2026-01-21

Estimated attack date: 2026-01-20

Country: AE

Description:

www.sibca.com https://www.zoominfo.com/c/sibca/67568584 At Sibca we promote a diverse work environment to support the client base and communities that we operate in. With a focus on recruiting our technical team with electrical and computer engineer qualifications from leading universities we have the skills and capabilities to address all our clients' needs. With its roots as a family business we take pride in investing in our employees and their careers at every opportunity. We seek to maximise the potential of all our employees, expand their professional horizons and ask them to contribute positively to the communities in which they operate. We pride ourselves on the fact that the majority of our senior management has risen through our ranks and been able to fulfill their potential. And we are confident that their successors are with Sibca today.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 14

Compromised Users: 16

Third Party Employee Credentials: 39

External Attack Surface: 11

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse@godaddy.com
MX Records
  • sibca-com.mail.protection.outlook.com.
TXT Records
  • zqXLhzz0iUbLNyUOQ1fC205z2P+xIGut938tWmr8MBgZuGWqqGT4dfM1eP7U3V0bxUA7CU8GsOseS51t3ngfBQ==
  • 731g4n14mpq9610ah0lf7hi8mf
  • nEYgirgkbNmoV4l5nSu4aTYgVVy2CupU3+ev7D0FEQ8MWxSnysgZ8vORpL0pinSH/ZJrFEXHL/Y6zDe2AfIYNA==
  • /9E5owsbiYmjcAGgAfOB3XWFWtiXt3iscQ/k9EZlLvLJEKSiEfKWjZvU4g3WdFeiwTWlJ3ldkN1fJcqJV4WMHg==
  • 38gbrn114t7np4igch5fipuk5k
  • v=spf1 include:spf.protection.outlook.com ip4:151.253.113.81 -all
  • c3jmtrunhlb10ug5a63pm9kffq
  • 5jmu81mbl00cb4oqr1hfn6e28k
  • v=verifydomain MS=5152060
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.