Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo wrm.org

Group: safepay

Discovered by ransomware.live: 2025-03-30

Estimated attack date: 2025-03-30

Country: US

Description:

[AI generated] N/A

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 4

Third Party Employee Credentials: 0

External Attack Surface: 11

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • alt2.aspmx.l.google.com.
  • alt3.aspmx.l.google.com.
  • alt4.aspmx.l.google.com.
  • aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
TXT Records
  • v=spf1 +a +mx include:_spf.google.com include:wrm.org.spf.auto.dnssmarthost.net ~all
  • google-site-verification=_MA8AybA4egvCiCvpab8FLBXhjzszU3q87Hdl3WI-7c
  • google-site-verification=bxsowaoZ0_6wisyd6jpIfiSdGfEsZXYEhFKFFT7UbdA
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot