Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo wwcsd.net

Group: ransomhub

Discovered by ransomware.live: 2025-02-09

Estimated attack date: 2025-02-09

Country: US

Description:

[AI generated] It appears there may be some confusion around "wwcsd.net" as it's not a company. Instead, Wwcsd.net is the official website of Wayne-Westland Community Schools, a public-school District in Michigan, USA. They provide educational services to students from pre-kindergarten through 12th grade in Wayne, Westland, Canton, Inkster, and Romulus. The website offers resources for students, parents, and staff.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 5

Third Party Employee Credentials: 2

External Attack Surface: 6


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse directnic.com
  • wwcsd.net dnic.JewellaPrivacy.com
MX Records
  • alt2.aspmx.l.google.com.
  • aspmx.l.google.com.
  • alt3.aspmx.l.google.com.
  • alt4.aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
TXT Records
  • v=spf1 include:_spf.google.com include:spfa.cpmails.com ip4:88.99.206.152 ip4:206.57.249.0/24 ip4:206.57.140.0/24 ~all
  • 4nxvc8b5g153jmc54109rq78l831x9qd
  • MS=64664E27A95D5D150AC9537C05657C9227D549DC
  • _6wlxlphglijxizp8hhllvo2vwef6zrf
  • adobe-idp-site-verification=fcb98bc3fe833a0d8769c41f990a779c36d01a5ae317ae32a943c0f40a643286
  • apple-domain-verification=D7x2LQdxsyIsUIcC
  • google-site-verification=jbPSGa0A4bGbI-132xtxatjdN3AI6yba8frayCDVPsU
  • ryhzx9p0p7y6s1r2vk66ggjl28slr2ws
  • thlm29lmmz4792lr412zhhc9hykb7jnl
Cloud / SaaS Services Detected
Adobe Apple

Leak Screenshot:

Leak Screenshot