Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo ki.se

Group: trisec

Discovered by ransomware.live: 2024-02-19

Estimated attack date: 2024-02-19

Country: SE

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 5

Compromised Users: 102

Third Party Employee Credentials: 15

External Attack Surface: 73


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • ki-se.mail.protection.outlook.com.
TXT Records
  • HARICA-BNzIpHuZb4fHrhDL5we
  • v=spf1 include:_spf.ki.se include:_spf2.ki.se include:_spf3.ki.se include:spf.protection.outlook.com include:all._spf.plma.se include:_spf.nanolearning.com ip4:82.196.180.210 include:spf-eu.exlibrisgroup.com ip4:205.201.136.26 -all
  • ipLe2RXybLVX0k1pgECUYrqltVFAhXAHA8RvD15PPFTKwzvn9seMVG1W8Pw8zo1PR2qFLxcBfKToVz7aYQyJjw==
  • MS=E939D92A52B20225345A44C2EAB76DBB8B4C957E
  • facebook-domain-verification=unvisrjjgpehgtb4kdhhh03k6vxcyp
  • h28dtj3uyO66Imn7T5Jer9h5ZZjrDeB/IX6pfskcjlbs9khsGcBdCBRedBH4bqVQlATXNTsC2+bu0ciQSMghAQ==
  • apple-domain-verification=ypyg2Jun8VDasTx6
  • atlassian-domain-verification=VRUjln7jv2GQqNSjlsiOaXHKsHptSPkw4cAUJ6/DITYSttG5F5E/Rs6rOmMOJzPa
  • SITHSvalidation_2025-01-14
  • google-site-verification=IUyKr3qvycjFZKjstMTyFQMhq4FzjxtNWk6UtaRGlOw
  • d365mktkey=OLENvjgB6lRUO9ZN2zHWsx2Mo741W0BCCo7i6fhiZesx
  • jamf-site-verification=yKe3ekVoO3CXw9r8SiDOfg
Cloud / SaaS Services Detected
Apple Atlassian JamF

Leak Screenshot:

Leak Screenshot