Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo extramarks.com

Group: killsec

Discovered by ransomware.live: 2024-10-10

Estimated attack date: 2024-10-10

Country: IN

Description:

Discover a new era of education with Extramarks. Our innovative digital solutions empower schools, teachers, students, and parents to revolutionize the way they teach and learn.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 97

Compromised Users: 8174

Third Party Employee Credentials: 34

External Attack Surface: 168


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • extramarks-com.mail.protection.outlook.com.
  • outlook.extramarks.com.
  • webmail.extramarks.com.
  • mx1.hc883-1.ap.iphmx.com.
  • mx2.hc883-1.ap.iphmx.com.
TXT Records
  • google-site-verification=nH9PzWH5x-xCkKaGwPY8ceOfa_WoahjlFUokj2Jc14I
  • google-site-verification=wCdMsI8z05gNZFhQMXjIFH_eqIQZPugmzunDqazngJE
  • t0uh326qbk60d7hmd3orf6fhav
  • v=spf1 a mx include:amazonses.com include:spf.protection.outlook.com exists:%{i}.spf.hc883-1.ap.iphmx.com include:spf.gonetcore.com -all
  • MS=ms12540052
  • MS=ms13081642
  • MS=ms36367301
  • amazonses:eFbTx9wqI4Xd2CrIfwmEaCIlV0xYsGCmr5yjWNAvBCU=
  • facebook-domain-verification=cn9nutan0ov9dgpvkfkksi2kzwlwne
  • google-site-verification=12rB3iPCwq-PBbA0Zl1e1w3TloIqmLgxybj0DQ8t51U
  • google-site-verification=JZfcBTJ98McQ37HgTyP7yVgiljC5ItUqO2WIptvx7Gw
  • google-site-verification=YhVfLtnps2szymEWcP740-03KEElJ-z3kKGcaes2lTU
  • google-site-verification=gx_M-AdBlEQ1MYETs0TbvFnqMLMB4X9Ceus8xsftCys
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365

Leak Screenshot:

Leak Screenshot