Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo busaba.com

Group: Devman

Discovered by ransomware.live: 2025-09-29

Estimated attack date: 2025-09-29

Country: GB

Description:

Ransom: 580000 USD

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 4

Compromised Users: 2

Third Party Employee Credentials: 1

External Attack Surface: 5

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse 123-reg.co.uk
MX Records
  • busaba-com.mail.protection.outlook.com.
TXT Records
  • v=spf1 a:smarthost.c4l.co.uk a:ipv6.smarthost.c4l.co.uk include:txdltd.co.uk include:spf.protection.outlook.com ip4:84.45.53.84 include:spf.emailsignatures365.com ~all
  • f97q1d7t0bb20679r4k1jjs3l
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot