Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo hetrhedens.nl

Group: Blacksuit

Discovered by ransomware.live: 2024-11-17

Estimated attack date: 2024-11-17

Country: NL

Description:

Het Rhedens heeft drie locaties die samen alle vormen van voortgezet onderwijs aanbieden: van praktijkonderwijs tot en met gymnasium. We willen dat de leerling zijn talenten maximaal ontplooit en zich ontwikkelt tot een betrokken, sociale en zelfbewuste deelnemer aan de samenleving.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 5

Third Party Employee Credentials: 0

External Attack Surface: 5


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • alt3.aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
  • alt4.aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • aspmx.l.google.com.
TXT Records
  • google-site-verification=1EABRHpPod0jxLv_LrlcnqRVwwEAKrrb_saPUTr7Md4
  • adobe-idp-site-verification=e444397ee8acb337c60f0feff5a20fb4da5d6a9bc8bad9e29648698ff8756c32
  • v=spf1 mx include:spf.wielink.nu ip4:46.183.253.8/29 ip4:82.201.80.143 ip4:94.142.211.197 ip4:94.142.211.196 ip4:94.142.211.204 ip4:185.144.225.177 ip6:2a03:9700:8000:0:b1d1:f76c:9347:c854 include:spf.protection.outlook.com include:emailus.freshservi" "ce.com include:_spf.google.com ~all
  • google-site-verification=8NJBAbB72NnzhrR_45MPA94NSB72KAwiBQCn8CYpJwk
  • MS=0FA2D1131E7EC20010B136D685D6DF86EE516D98
Cloud / SaaS Services Detected
Adobe

Leak Screenshot:

Leak Screenshot