Sioux Chief
Sioux Chief
Group: hunters
Discovered by ransomware.live: 2025-05-05
Estimated attack date: 2025-05-05
Country:
Description:
Exfiltraded data : yes - Encrypted data : yes
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 4
Third Party Employee Credentials: 0
External Attack Surface: 2
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- d121471a.ess.barracudanetworks.com.
- d121471b.ess.barracudanetworks.com.
TXT Records
- apple-domain-verification=PELBtDZZFWp9e4Tt
- atlassian-domain-verification=gS2/L7c6dvKVjU4mSsQxHdUOIJlz2HsmPL1wHcbVyT/hgP/cJGNPNG0SCguXTDBI
- _globalsign-domain-verification=l9s0OJFwPDZoK-rQRDTxKM8M6pR4d05oNB--TlcaK3
- _globalsign-domain-verification=6c3FJBW5iDpLZvG_ZnRMl9CMzi_HbtgKO2to0sA0E5
- google-site-verification=o1m6bJs3jXEXVHnTiLjTNBpUSciZ51uUSQXRttDv94c
- v=spf1 ip4:12.30.164.234 include:mail.siouxchief.com include:spf.protection.outlook.com include:spf.ess.barracudanetworks.com include:servers.mcsv.net include:_spf.salesforce.com include:spf1.isquote.com -all
- atlassian-sending-domain-verification=1b9902c8-3aba-4ae7-9e5d-7fa209f99115
- sending_domain1079863=9423252318502f3afd015263b1eeee916384adb8fb93d9994e214a235d253111
Cloud / SaaS Services Detected
Apple
Atlassian
Salesforce
Leak Screenshot:
