Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo gsdwi.org

Group: ransomhub

Discovered by ransomware.live: 2024-09-24

Estimated attack date: 2024-09-24

Country: DE

Description:

Certainly! The Germantown School District, often referred to by its website "gsdwi.org," is an educational organization located in Germantown, Wisconsin. It serves the community by offering comprehensive K-12 education, focusing on academic excellence, innovative teaching, and student development. The district prioritizes a collaborative environment to foster growth and prepare students for future success.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 25

Third Party Employee Credentials: 17

External Attack Surface: 4


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • registrar-abuse cloudflare.com
MX Records
  • alt2.aspmx.l.google.com.
  • aspmx2.googlemail.com.
  • aspmx.l.google.com.
  • aspmx3.googlemail.com.
  • alt1.aspmx.l.google.com.
TXT Records
  • google-site-verification=HRdrXDMFZFu-S7VDN3hKJNkN6UhhJE_RHtJLh0_MDrU
  • twilio-domain-verification=bc9b9a94f18ee6418035d24d41e2e8a6
  • v=spf1 mx a ip4:24.106.31.64/27 include:_spf.google.com include:sendgrid.net ~all
  • ycl718w3qrfsccyvr5cj7mgwkz9602xf
  • _liwi4ap3byersw105e8lewz8tybosoi
  • adobe-idp-site-verification=f1c85473b605ab1fed05a6d074b60af75d69722d4111fdc04b8453c9d1542fd8
  • apple-domain-verification=7veL1nRuw9jkvml0
  • autodesk-domain-verification=hILaob5YS0ov4Ia76UUS
  • bw=Cmi6HWBlu0jNIIU2tAuYValZfWZUBu7JJhPpaVmzbeVx
Cloud / SaaS Services Detected
Adobe Apple Twilio Autodesk SendGrid

Leak Screenshot:

Leak Screenshot