Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Town of Vienna, VA

Group: cephalus

Discovered by ransomware.live: 2025-08-26

Estimated attack date: 2025-08-26

Country: US

Description:

coming soon

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 2

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • d274418b.ess.barracudanetworks.com.
  • d274418a.ess.barracudanetworks.com.
TXT Records
  • google-site-verification=vmOx0mg2rcc3yC6Ie_OcgHY9ZWbcaCMMBXQZO42Rao0
  • MS=ms28303775
  • 4f2m7pq44ogpksa488d12u44in
  • e2ma-verification=7jlcb
  • apple-domain-verification=7RIj4v3pAdFiFiti
  • apple-domain-verification=rDT00WwRsDDFgIVZ
  • e2ma-verification=aqccb
  • v=spf1 mx include:spf-us.appmail.granicusgovaccess.net ip4:69.5.90.0/24 ip4:69.5.90.105/32 ip4:71.126.154.90/32 ip4:139.60.0.0/24 ip4:139.60.1.0/24 ip4:139.60.2.0/24 ip4:139.60.3.0/24 ip4:209.222.82.0/24 include:spf.ess.barracudanetworks.com include:spf.d" "ynect.net include:amazonses.com ~all
Cloud / SaaS Services Detected
Apple Amazon SES/WorkMail Microsoft 365