Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks


Group Play
Discovered 2025-10-28 17:40 UTC
Est. attack date 2025-10-23
Country US

Description:

United States

Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 2

Third Party Employee Credentials: 2


External Attack Surface: 1


Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • 9101626da59ef6bef9ab6af440ac0e02ee8cad71ae2b2566f9f866d1b89c2f9bevogence.com.whoisproxy.org
  • trustandsafetysupport.aws.com
  • 9101626da59ef6bef9ab6af440ac0e020557402bbb32c8ba7c636346ad5800bcevogence.com.whoisproxy.org
  • 9101626da59ef6bef9ab6af440ac0e02632ce57e81b92583e301082814e8f474evogence.com.whoisproxy.org
  • 9101626da59ef6bef9ab6af440ac0e02d1984c4a5ff6d4ff7e45708d06d443b7evogence.com.whoisproxy.org
MX Records
  • evogence-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • atlassian-sending-domain-verification=bdf7396a-c7ad-405f-9c92-8a846c6387e6
  • v=spf1 ip4:76.8.67.66 include:spf.protection.outlook.com -all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot