cobbcounty
cobbcounty
Group: qilin
Discovered by ransomware.live: 2025-05-01
Estimated attack date: 2025-05-01
Description:
Cobb County is a county in the U.S. state of Georgia, and is a core county of the Atlanta metropolitan area in the north-central portion of the state. We also publish a full dump AD. 400.000+ files. over 150gb. All data will be rel ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 10
Compromised Users: 156
Third Party Employee Credentials: 7
External Attack Surface: 41
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- mx1.hc5189-21.iphmx.com.
- mx2.hc5189-21.iphmx.com.
TXT Records
- 50C7-32B2-732F-7084-CF8D-7BEC-52A1-474A
- specops-verification-code=9560a737-0803-42f7-be77-ce04df8d39bf
- EpWnv4n8Ef1sQSfSsWXn6eYwfYDssjKMeFsoSJ0LKcHZKc5Jm6TGvZHFfc1focAv5x0R/y9E1N9ShRKNr6oqtA==
- duo_sso_verification=YQsmwx1XLK7SgSUfZYmVhjMglN11atTvpMXun5UroPpOpbeeyWDfvbWRGzrZbnYr
- google-site-verification=BFh79kJjIzDKJUu6-PiaADwT3XpoaT5awctL0fuNXfw
- cisco-ci-domain-verification=547231dbccf22d66e05df35d74ffffcc497f0bd0c07f34cc90adfb9dda55309a
- v=spf1 mx ip4:207.54.85.173 ip4:23.90.99.162 ip4:199.59.200.201 ip4:160.73.51.138 ip4:160.73.51.139 ip4:160.73.51.140 ip4:160.73.51.141 ip4:160.73.50.240 ip4:149.72.227.46 include:spf.protection.outlook.com include:_xnspf.paymentus.com ~all
- _pki-validation.cobbcounty.org=AF86-743C-A269-4222-A9DE-253F-94A2-6133
- google-site-verification=8XQ1H46TmBFY8Jrq3eJRwXEmcn5HVhPk-wzHrQ4PAlA
- apple-domain-verification=ILaIzaH1W4dEjyfD
- MS=ms30261059
Cloud / SaaS Services Detected
Apple
Microsoft 365
Cisco
Cisco Duo
Leak Screenshot:
