Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Logo

Steel Dynamics

steeldynamics.com
Group Akira
Discovered 2025-12-24
Est. attack date 2025-12-24
Country US

Description:

Steel Dynamics is a leading manufacturer of steel products and pr ovider of metals recycling services operating in the United State s and internationally since 1993. The company produces a comprehe nsive range of steel products including sheet steel, structural b eams, rail products, engineered bars, and specialty steel section s. Steel Dynamics also offers metals recycling services, processi ng both ferrous and nonferrous scrap metals into reusable forms. We are going to upload their corporate data soon. You will find t ons of Accounting files, documents, and audits. Upon obtaining th is data, you could gain invaluable insights into their company's financial health and strategic direction making.
Infostealer activity detected by HudsonRock

Compromised Employees: 2

Compromised Users: 3

Third Party Employee Credentials: 9

External Attack Surface: 6

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations@web.com
MX Records
  • us-smtp-inbound-2.mimecast.com.
  • us-smtp-inbound-1.mimecast.com.
TXT Records
  • SFMC-asi_bd7SvGj-aP_O6uw-6tdVqYRVUAsPyT-_ynr1
  • v=spf1 ip4:64.141.148.170 ip4:50.104.125.24 ip4:64.141.148.98 include:spf.mtasv.net include:spf.protection.redatatech.com include:us._netblocks.mimecast.com include:_spf.salesforce.com include:sendgrid.net include:cust-spf.exacttarget.com ~all
  • guR6LQMNnZDTHI7ImBTKK/2yD2VjVQFzGS25DG4BV8CefIL/UoZ9CbRIa2yUgadll80pn1tvEd5VO3CNF8k1ug==
  • knowbe4-site-verification=2684a848eddee95e7a7336c13e1d3257
  • ZOOM_verify_L2SVdKpBQVWTZZ-MLD1NkQ
  • rTH4VU064hkzq0hF006UQB1WCPo7a7raUKFPdPw4GX4wKm+IawLiYt0tO27siL6DyvGX8BoCI6YRAnd3Uxn+ZA==
  • MS=ms37146497
  • atlassian-domain-verification=rIH8aRbK33svbtGeawzkLw0A0XjaolOkzoYrgDGwGkI17udlfQwk/MJehR85Cvgv
  • abuseipdb-verification=2cBlD7ip
  • cisco-ci-domain-verification=2f47ab38e946620d60f2330d1c15833854b469d830a110348c1769ff615e6347
Cloud / SaaS Services Detected
Atlassian Microsoft 365 Salesforce KnowBe4 Cisco SendGrid Mimecast Zoom

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.