Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Tulsa International Airport

flytulsa.com

Group Qilin
Discovered 2026-01-30 08:12 UTC
Est. attack date 2026-01-30
Country US

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusegkg.net
  • d6dd0e0101553ab76e0bcbee20c947039d282461privatedomain.gkg.net
MX Records
  • flytulsa-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • knowbe4-site-verification=e3a1c1a672e6896c02599c4ce5213f5e
  • v=spf1 include:spf.protection.outlook.com ip4:204.93.158.150 ip4:192.104.10.150 -all
  • duo_sso_verification=f6l4MSnqlXx4pTCAbBPJNIJ9ykNLXZXLYXNqsrBUDfFcMSYrbIBNrfaFrsYUVabm
Cloud / SaaS Services Detected
KnowBe4 Cisco Duo

Leak Screenshot:

Leak Screenshot