Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Volta River Authority

Group: Blacksuit

Discovered by ransomware.live: 2024-10-11

Estimated attack date: 2024-03-07

Country: GH

Description:

The Volta River Authority generates, transmits and distributes electricity under the Volta River Development.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 61

Compromised Users: 37

Third Party Employee Credentials: 41

External Attack Surface: 51


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • vra-com.mail.protection.outlook.com.
  • mailserver.vra.com.
TXT Records
  • MS=ms25878562
  • hjtyb6rcrfnckxv4305bkwg42pgs5sy7
  • v=spf1 ip4:41.204.48.2 ip4:41.204.48.21 ip4:41.204.48.11 include:spf.protection.outlook.com include:mail.vra.com -all
  • jUPMlWp3WxsjWWgikIAaGeU8t84VBKriSQwhtwigIp/WuYgbkOAGvHKpL9VDJBtwvJhS/3eDwJWWNP4MYBixLw==
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot