Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo cityofmiddletown.org

Group: Safepay

Discovered by ransomware.live: 2025-09-12

Estimated attack date: 2025-09-12

Country: US

Description:

The City of Middletown, located in Ohio, United States, operates as a municipal government dedicated to providing essential services and …

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 17

Third Party Employee Credentials: 0

External Attack Surface: 5

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mx2.dnsmadeeasy.com.
  • mx3.dnsmadeeasy.com.
  • mx1.dnsmadeeasy.com.
  • us-smtp-inbound-1.mimecast.com.
  • us-smtp-inbound-2.mimecast.com.
TXT Records
  • google-site-verification=AIZAfUL18evC-fKUdGwg0QKEd5HVBvgAgH-ylPmDd1M
  • 0ed1fe018ad47c9fb059e74536a46b4d9cfe31e27e
  • ishvjh8mi99q3aj1m4qa6a6be
  • apple-domain-verification=6PPJ2WZsfRr1xoEg
  • notion-domain-verification=JaVSDcpZibOb4h9lWQWosChGJNROvueH3DqZiD8vndr
  • asj6ikdbst8m3tlbu3l8aqhde9
  • canva-site-verification=KFOT8d2wW4_b-eATznhCZg
  • MS=ms63296583
  • facebook-domain-verification=na49g25krk73iaw4zu954qnw7nd1k0
  • slack-domain-verification=Ju4M5VMajpciIZuOs40RRiO1kTadbRiZJHcnGk7Q
  • 9662582
  • v=spf1 ip4:69.71.62.18 include:spf.healthspace.com include:us._netblocks.mimecast.com include:_spf.freshmail.pl include:spf.protection.outlook.com include:spf-us.emailsignatures365.com -all
  • duo_sso_verification=mJqZ4Yw8lcuu8mwXOidWG2BZVsNc8VZM5aTOtRRCOYduRUjcuFTIlCUyIK85CvPA
  • 1password-site-verification=CT3SYBB2Z5FYBP2BKLVAMXPEXQ
  • 3k0prbrsomu6okgpq6mabhbfsr
Cloud / SaaS Services Detected
Apple Microsoft 365 Slack Cisco Duo Mimecast

Leak Screenshot:

Leak Screenshot