Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo acsi.org

Group: Blacksuit

Discovered by ransomware.live: 2024-08-01

Estimated attack date: 2024-08-01

Country: US

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 87

Third Party Employee Credentials: 2

External Attack Surface: 34


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • acsi.org.1.0001.arsmtp.com.
  • acsi.org.2.0001.arsmtp.com.
TXT Records
  • \"ZA=ZmCkaPo2x3iglEuG6444yA==\
  • \"ZIHTIgaA9Ay1mU4OHCWoT07ald+oqjWVjtMVQZitLdkkWZwxkJPtvAFTsJgWBDKLUi89V8+2/sAIU3Wwg6Ow/w==\
  • \"google-gws-recovery-domain-verification=46338976\
  • \"google-gws-recovery-domain-verification=46373769\
  • adobe-idp-site-verification=ea62bf5a55460fc15248404eea934b8babc0c0354eba6da878064819d7ed2771
  • google-gws-recovery-domain-verification=46338976
  • google-gws-recovery-domain-verification=46373769
  • google-site-verification=dcF7GN3YH95KXIV-2slnk7c9My6JNoHdeD2ygfrruO0
  • jamf-site-verification=HRZs1Kvx_YJbjlEC59I8ag
  • v=spf1 include:_spf.acsi_org._d.easydmarc.pro exists:%{i}.spf.hc5662-46.iphmx.com ~all
  • MS=03D5E483FF8E8AD187F48669F97FAEF6069177E1
  • ZA=ZmCkaPo2x3iglEuG6444yA==
  • ZIHTIgaA9Ay1mU4OHCWoT07ald+oqjWVjtMVQZitLdkkWZwxkJPtvAFTsJgWBDKLUi89V8+2/sAIU3Wwg6Ow/w==
  • \"MS=03D5E483FF8E8AD187F48669F97FAEF6069177E1\
Cloud / SaaS Services Detected
Adobe JamF

Leak Screenshot:

Leak Screenshot