Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Richmond Plywood Corporation Limited

richply.com

Group Secpo
Discovered 2026-04-14 05:57 UTC
Est. attack date 2026-04-14
Country CA

Description:

The total volume of extracted data amounts to approximately 1.09TB (522,925 files total), with a filtered size of 230GB (161,200 files). The files contain references to more than 2,500 unique individuals and 4,000 organizations...

Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 0

Third Party Employee Credentials: 1


External Attack Surface: 0


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operationsweb.com
MX Records
  • richply-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • v=spf1 include:spf.protection.outlook.com a:mail.richply.com a:richply.com ip4:99.199.77.48 ip4:216.251.32.98 ip4:209.121.64.50 -all
  • MS=ms93598818
  • mDmJjBQFNp/g9lA0upMsMihgxDr2N+q9L6TBtCXdAJvJ0FSfPm7UDMdEZUZyJIGMF5eO3FAtRiMzxBJYhJJ61A==
  • 073nH6OTiOJLx01QNQpb3wgPA7r7DsAyi4EXYbWt654unZvl1Ydeun1/b9XAw4nKLml1ffomGKN7xry5+r3Ntw==
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot