Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo ekitistate.gov.ng

Group: funksec

Discovered by ransomware.live: 2024-12-15

Estimated attack date: 2024-12-15

Country: NG

Description:

[AI generated] "Ekitistate.gov.ng" is the official website for the government of Ekiti State, Nigeria. It serves as a digital portal for residents and visitors, providing information on government services, departments, and current initiatives. The site features updates on policies, economic development, education, healthcare, and tourism. It aims to enhance transparency and accessibility, fostering engagement between the government and the public.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 9

Compromised Users: 45

Third Party Employee Credentials: 5

External Attack Surface: 21


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domains nitda.gov.ng
MX Records
  • mx2.zoho.com.
  • mx3.zoho.com.
  • mx.zoho.com.
TXT Records
  • v=spf1 include:zoho.com +a +mx +ip4:159.89.234.200 ~all
  • beba4fe90f4d4a5a6cb0fc99e3568782ceb0df044024478406c3e689fcb2d7e
  • f7ckmtbdrao0spskm3uofb38d5
  • vsh82eridm881tv2e6326rqsqd
  • gqcr3on6raap34ie7g74gh6ouv
  • zoho-verification=zb85474410.zmverify.zoho.com
  • 692eb36eedace64918032843aeb7dcf95689ce0b9f66ad25646012678d9f41f
Cloud / SaaS Services Detected
Zoho Campaigns Zoho Mail

Leak Screenshot:

Leak Screenshot