Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo credihealth.com

Group: killsec

Discovered by ransomware.live: 2024-10-01

Estimated attack date: 2024-10-01

Country: IN

Description:

Credihealth is a leading healthcare technology platform that provides patients with access to a wide range of medical services. The company focuses on facilitating connections between patients and healthcare providers, offering services such as online consultations, appointment scheduling, and access to medical information. Credihealth aims to enhance the healthcare experience by leveraging technology to streamline processes and improve patient outcomes.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 9

Third Party Employee Credentials: 2

External Attack Surface: 10


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse-complaints squarespace.com
MX Records
  • aspmx2.googlemail.com.
  • aspmx3.googlemail.com.
  • smtp.google.com.
  • alt4.aspmx.l.google.com.
  • aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
TXT Records
  • v=spf1 include:_spf.google.com include:sender.zohoinvoice.in include:sendgrid.net include:spf.protection.outlook.com include:amazonses.com ~all
  • MS=ms14365305
  • google-site-verification=-PusrKqjiXBD3563l23nasRNK2WrO-cgQa0LeznZZ2k
  • google-site-verification=y-Tw0EguFv7PScMG1xXC_1QtmifucYw0_dKT02kD160
  • ms-domain-verification=80450e90-a5a0-4352-8ddb-7517e76b0303
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365 SendGrid

Leak Screenshot:

Leak Screenshot