Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo baytoti.com

Group: ransomhub

Discovered by ransomware.live: 2024-07-25

Estimated attack date: 2024-07-25

Country: SA

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 2

Third Party Employee Credentials: 3

External Attack Surface: 2


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • baytoti-com.mail.protection.outlook.com.
TXT Records
  • google-site-verification=Iiwxz9jKuGWyKGCf3utFQ--gr2MIVJ7wxh5djtJhCi8
  • google-site-verification=YmQzdnph4G5W47azkxnOKrZZsNi_T_6s7BNQUo-BjUQ
  • google-site-verification=yAWnEER9SANqWnkDn8AJ3Akc3KylwO2pF2jZuTPfkeU
  • v=spf1 +mx +a +ip4:207.180.234.163 include:spf.protection.outlook.com ~all
  • MS=BC5132C55BA6ECE57C18F001703CE2C18ABDACC3
  • MS=ms78077506
  • facebook-domain-verification=rukv48uqpvto8ezymtc40he5sa9si8
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot