Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo ndceg.com

Group: funksec

Discovered by ransomware.live: 2025-01-07

Estimated attack date: 2025-01-07

Country: US

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 3

Compromised Users: 1199

Third Party Employee Credentials: 23

External Attack Surface: 23


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse namecheap.com
  • 943b4dcdfe734c66a32286f771966ed3.protect withheldforprivacy.com
MX Records
  • mail.ndceg.com.
TXT Records
  • v=spf1 +a +mx +a:serv.elmezlawyholding.com include:_spf.elasticemail.com include:_relay.amadeus.com ip4:154.41.209.98 -all
  • zoho-verification=zb12329221.zmverify.zoho.com
  • 46z133hnbvx8353g462mmy3j28jrth0x
Cloud / SaaS Services Detected
Zoho Campaigns

Leak Screenshot:

Leak Screenshot