sagchip.org
sagchip.org
Group: Qilin
Discovered by ransomware.live: 2025-10-02
Estimated attack date: 2025-10-02
Country:
Description:
the Saginaw Chippewa Indian Tribe of Michigan, USA - It's impossible to keep a poker face now. This small community of about 3,000 people is located in Isabella County, near Mount Pleasant. The tribe owns gas stations, a water park, a hotel, ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 1
Compromised Users: 0
Third Party Employee Credentials: 0
External Attack Surface: 4
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- newfish.sagchip.org.
TXT Records
- sophos-domain-verification=15f87347cdd0c2ee51a43d37cbe6e44f6073f44ad2b0fd2da3defe178d5cd8b6
- v=spf1 ip4:64.186.47.170/32 mx ip4:64.186.47.183 a:ltxmail.synxis.com include:sendgrid.net include:spf.prod.cadienttalent.com ip4:40.143.168.36 ip4:40.143.168.147 ip4:40.143.168.148 ip4:40.143.168.149 ip4:40.143.168.150 -all
- apple-domain-verification=goyj0e5B44nRonGo
Cloud / SaaS Services Detected
Apple
SendGrid
Sophos
Leak Screenshot:
