The Tech Interactive
The Tech Interactive
Group: moneymessage
Discovered by ransomware.live: 2025-05-01
Estimated attack date: 2025-04-16
Country:
Description:
The Tech Interactive is a world class science and technology center in the heart of the Silicon Valley that welcomes over 250,000 visitors a year.Since opening in 1998, The Tech Interactive (formerly the Tech Museum of Innovation) has welcomed more than 10 million visitors.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 48
Third Party Employee Credentials: 2
External Attack Surface: 19
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- mx1-us1.ppe-hosted.com.
- mx2-us1.ppe-hosted.com.
TXT Records
- 35316b1b7a0e5b0ca95326a77dba374c1361cd7135115f4e352e0519b3293b30
- v=spf1 a:dispatch-us.ppe-hosted.com ip4:64.71.139.0/24 include:_spf.google.com include:spf.24269306.spf07.hubspotemail.net include:sendgrid.net ~all
- openai-domain-verification=dv-U5KKEpOkLZFzH3PXgfs3QZUm
- ppe-7ca395a72fb983cfe2a592be3a7ef263e6aabaf2
- MS=msRTG-789-TGB
- MS=ms45424870
Cloud / SaaS Services Detected
HubSpot
Microsoft 365
SendGrid
Proofpoint Essentials
Leak Screenshot:
