Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo PSI

Group: hunters

Discovered by ransomware.live: 2024-02-17

Estimated attack date: 2024-02-17

Country: US

Description:

Country : United States of America - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 3

Compromised Users: 22

Third Party Employee Credentials: 9

External Attack Surface: 17


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • trustandsafety support.aws.com
  • 1464e586-1ab3-49ff-8a3e-47ed0f986178 identity-protect.org
MX Records
  • psi-org.mail.protection.outlook.com.
TXT Records
  • pardot857593=a9999efeaa610e0f9f7479120552b82b15c98d9fd3bc737bea1d23be57052898
  • pardot_320231_*=a3668f3
  • v=spf1 include:spf.protection.outlook.com include:aspmx.pardot.com include:_spf.salesforce.com ip4:216.200.96.210 -all
  • pardot857593=44c6ae8894524a4fbe4e83b9eddffb06f7e94efb2715291bc1bbdbc9a163384b
Cloud / SaaS Services Detected
Salesforce

Leak Screenshot:

Leak Screenshot