Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

uide.edu.ec

uide.edu.ec

Discovered 2022-09-22 05:18 UTC
Est. attack date 2022-09-22

Infostealer activity detected by HudsonRock

Compromised Employees: 580

Compromised Users: 315

Third Party Employee Credentials: 1307


External Attack Surface: 133


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • soportedominiosecuador.ec
MX Records
  • fortispam.cedia.org.ec.
TXT Records
  • 9g0bpsh8v6lro7csfd5dsqcnou
  • cisco-ci-domain-verification=34d4fecd0bd5bb47559b7cfa3acd70e0908d12640da28d6bfb868e1439d61b41
  • google-site-verification=ydzav0FJUA-3qzIk7EeXbOlj9BvmlqFtufE0WN8cACw
  • MS=ms75817699
  • brevo-code:1c9a794abc057f9545a83c3fcba7e98d
  • openai-domain-verification=dv-LO5DzoWeyfAFTFtZDuccOuYN
  • q449scu1h3an36g8la9gb51nlt
  • 00DO900000PfznV=1TBO90000000nf3
  • pardot455762=7539d5e8a5f59cd8c246d133bd77360a227930582e70e2fe309ac0b63d7bba79
  • 00DO900000PfrOX=1TBO90000000pCD
  • v=spf1 include:_spf.mlsend.com a mx include:spf.masterbase.com include:bmsend.com include:spf.protection.outlook.com include:aspmx.pardot.com include:_spf.salesforce.com include:amazonses.com -all
  • mailerlite-domain-verification=07c8be5bf78f21bc7f7fd44da322426ca4e8e1c7
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365 Salesforce Brevo OpenIA Cisco