Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo alphabaking.com

Group: cactus

Discovered by ransomware.live: 2025-02-26

Estimated attack date: 2025-02-06

Country: US

Description:

<p>Alpha Baking Company, founded in 1979 and headquartered in Chicago, Illinois, manufactures fresh or frozen bread and bread-type rolls, cakes, pies, and other perishable bakery products.</p><p>Website: <a href="https://www.alphabaking.com/">https://www.alphabaking.com/</a></p><p>Revenue : $421.9M</p><p>Address: 5001 W Polk St, Chicago, Illinois, 60644, United States</p><p>Phone Number: (773) 261-6000</p><p><mark class="marker-yellow"><strong>Download link #1</strong></mark>: <a href="https://6wuivqgrv2g7brcwhjw5co3vligiqowpumzkcyebku7i2busrvlxnzid.onion/ALPHABAKING/PROOF/">https://6wuivqgrv2g7brcwhjw5co3vligiqowpumzkcyebku7i2busrvlxnzid.onion/ALPHABAKING/PROOF/</a></p><p><mark class="marker-yellow"><strong>Mirror:</strong></mark> <a href="https://cactus5dqnqkppa5ayckiyk6dttpqwczdqphv5mxh4dkk5ct544q5aad.onion/ALPHABAKING/PROOF/">https://cactus5dqnqkppa5ayckiyk6dttpqwczdqphv5mxh4dkk5ct544q5aad.onion/ALPHABAKING/PROOF/</a></p><p><mark class="marker-yellow"><strong>DATA DESCRIPTIONS:</strong></mark> Personal identifiable information, database backups, corporate confidential data, agreements\contracts\NDAs, HR dept docs, employees personal data, financial docs\payroll, production data, corporate correspondence, etc.</p><p><img src="/uploads/3_188eed81b0.png" alt="3.png"><img src="/uploads/1_63f385487e.png" alt="1.png"><img src="/uploads/4_351d9c3f34.png" alt="4.png"><img src="/uploads/5_8b9a67e2f5.png" alt="5.png"><img src="/uploads/2_b5a49c2a4a.png" alt="2.png"></p>

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 2

Compromised Users: 5

Third Party Employee Credentials: 0

External Attack Surface: 4


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • alphabaking-com.mail.protection.outlook.com.
TXT Records
  • MS=90A803E78AEF32E4A81A4EE023ACC2BAECD4BE11
  • v=spf1 ip4:38.71.194.0/24 ip4:162.245.112.176/28 ip4:162.245.112.165 include:spf.protection.outlook.com include:email.freshdesk.com include:_spf.ultipro.com include:spf.us-1.a.mimecastprotect.com -all
  • google-site-verification=H24462mPOQzYk5SWVknYbUgn2j_QHKoPNiqKMveFdr0
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot