Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Central Bank of Libya

www.cbl.gov.ly

Group Qilin
Discovered 2026-06-22 13:35 UTC
Est. attack date 2026-06-22
Country LY

Description:

N/A

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • ghaffarabdulfattahgmail.com
  • abuselibyanspider.com
MX Records
  • cbl-gov-ly.mail.protection.outlook.com. Microsoft 365
TXT Records
  • dtm-domain-verification=tmh9bfJYDloxwEUMfRV9rO3Fi_dx_W37nkM0t2myOII
  • google-site-verification=E6Hmm3voE9vUYwCLW8sy1sthix4fUzFtrkUW38Wpowk
  • google-site-verification=Yyo69_dVJD7WO2kRLnCF2aYbNN8uv1lNdoLJWRhrlko
  • v=spf1 a mx a:esa1-sec.cbl.gov.ly a:esa2-sec.cbl.gov.ly include:spf.secure.ly ip4:41.208.110.101 ip4:102.218.174.3 include:spf.protection.outlook.com ~all
  • verification=H02FDco9D65QgCt01iSMwuP8FbuYnTZyR2pKsV-LjN4
  • 0ZgCJnL7BWhHeaX4O7vGJPgMSlxXzSBiNGrjA+EFNOTKUoI3Q6W2mvpBwo6nrMTf4+eM3nGoxfiNTb60AVAjOg==
  • 2qun8vu3mml2v3b3ce7379kb9j
  • GX/Aefc41xmKBOKRtMie1A4pPq1Cx7+ZzHDrJAl0J+ZnZN0nrNRojXIk7T+70RWFslZnQVjzWiUP+wtV8I2pzg==
  • MS=6654E515069CB0CE893CE57E0D7136A2F6026DE9009
  • MS=ms96366440
  • atlassian-domain-verification=E6mLHDoD6uwNRaYYgcmvfx/cj6B2DP3okaxk9Aq1uLC07YzFw7yDkzROKfHy47Qn
Cloud / SaaS Services Detected
Atlassian Microsoft 365

Leak Screenshot:

Leak Screenshot