Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Rockford Public School District

Group: incransom

Discovered by ransomware.live: 2024-06-10

Estimated attack date: 2024-05-30

Country: US

Description:

In the course of successful work with this company, we have more than 1.5 TB of data in our hands. Data on students, passports of employees and students. Data on all incidents in recent years. All financial documents, all mail correspondence. And much, much more. In case of refusal to agree, all information will be published.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mx-02-us-east-2.prod.hydra.sophos.com.
  • mx-01-us-east-2.prod.hydra.sophos.com.
TXT Records
  • tqoovoghir8td7ip8f7brlm2pf
  • lp4hbjifign35rj7sns8677de0
  • 5ruimgmn7872h1hp69cn0g6ivq
  • v=spf1 ip4:206.31.47.40 ip4:199.36.164.0/22 ip4:38.73.236.194 ip4:38.73.236.195 ip4:216.109.67.249 ip4:52.226.152.64/28 ip4:20.62.181.248/29 include:zarca-inc.com include:k12-lets-talk.com include:spf" ".protection.outlook.com include:customerspf.schoolmessenger.com include:_spf.psm.knowbe4.com include:sendgrid.net ~all
  • apeok7r25hjjqgnon0an4ijkcd
  • rfmrraodk1fnroq4sl3qp7l5li
  • 7kv17jt2e33eg21no8bljoubku
  • duo_sso_verification=RbgCXLlOGUQmVX1Da7v04NyQ11IpKmOQN0rgzpRqBH0OTMi7YMRLtMDpZG9aHtmw
  • oljduhnmfdb9gup6fqblbn7oob
  • apple-domain-verification=bETlhxRCeTvwR8qm
  • google-site-verification=zcymVNgMHleK88ijhBt7lLKor1Is-bJrTVjuH_tpmRU
Cloud / SaaS Services Detected
Apple SendGrid Cisco Duo

Leak Screenshot:

Leak Screenshot