Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Welcome Financial Group

Group: qilin

Discovered by ransomware.live: 2025-08-18

Estimated attack date: 2025-08-17

Country: HK

Description:

Welcome Financial Group, Korea is a huge ecosystem operating in the finance industry. The group provides banking, digitalization, payments, integrated asset management, distressed loans, residential leasing, and startup financing services to ...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 49

Third Party Employee Credentials: 0

External Attack Surface: 11

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • spam.welcomefg.co.kr.
TXT Records
  • google-site-verification=nDDW1EeK6Yc_zBugR9leCx47J23sXQHZliKGNEgyKg4
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot