Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks


Group Rhysida
Discovered 2025-10-21 18:37 UTC
Est. attack date 2025-10-21
Country CA

Description:

Peraso

Infostealer activity detected by HudsonRock

Compromised Employees: 6

Compromised Users: 0

Third Party Employee Credentials: 6


External Attack Surface: 8


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • trustandsafetysupport.aws.com
  • 1d65f92ef34e52ed7668f8c279f52215a2eb0199857498be573c64419fd05ea0perasotech.com.whoisproxy.org
  • 1d65f92ef34e52ed7668f8c279f5221524a2e0227bc6a1c463c1de4c11430c02perasotech.com.whoisproxy.org
  • 1d65f92ef34e52ed7668f8c279f52215f4865531e04143d92826c5c4b007b193perasotech.com.whoisproxy.org
  • 1d65f92ef34e52ed7668f8c279f5221519ec54b73577a87168fbea3311135c20perasotech.com.whoisproxy.org
MX Records
  • perasotech-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • zoho-verification=zb60819772.zmverify.zoho.com
  • 1password-site-verification=V4XGDBVWR5BADMSHP32TPSETQY
  • atlassian-domain-verification=a2OY29+xQHOULqDGxdJ6NrzTbJBbgw5PZasETUJC7OOU8OketPO1S8zyZOMUryIo
  • g6uL9ss7kOBbCvQAex7DIXiaJSxhXr
  • v=spf1 ip4:206.223.176.122 include:spf.protection.outlook.com -all
Cloud / SaaS Services Detected
Atlassian Zoho Campaigns