Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo membersourcecu.org

Group: safepay

Discovered by ransomware.live: 2025-06-17

Estimated attack date: 2025-06-03

Country: US

Description:

[AI generated] MemberSource Credit Union is a not-for-profit financial cooperative based in Texas, USA. It provides a wide range of tailored financial services to its members, including savings and checking accounts, consumer loans, credit cards, mortgages, and investment services. It is member-owned and committed to providing competitive rates and fees.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 17

Third Party Employee Credentials: 0

External Attack Surface: 8

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • membersourcecu-org.inbound.emailservice.co.
  • membersourcecu-org.inbound.emailservice.io.
  • membersourcecu-org.inbound.emailservice.cc.
TXT Records
  • MS=56B9C126B65C3B0544D4BCADA9252823F490EF68
  • ( \"v=spf1 include:clickrsvp.com ip4:69.150.136.28 mx ~all\" )
  • v=spf1 mx ip4:208.80.200.0/21 include:spf.cashedge.com include:spf.us.emailservice.io mx a:_mailhosts.swbc.com ~all
  • apple-domain-verification=QnDwdXGNc4c8oxso
  • ( \"39s5hjagu1n1hvrh3tnaslglud\" )
Cloud / SaaS Services Detected
Apple

Leak Screenshot:

Leak Screenshot