Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Logo

Mobilelink USA

mobilelinkusa.com

Group: Dragonforce

Discovered by ransomware.live: 2025-12-02

Estimated attack date: 2025-12-02

Country: US

Description:

Mobilelink USA is a private Cricket Wireless company that deals in providing unlimited 5G LTE services and state of the art devices with an understanding of what keeps the customers loyal to a brand. As the largest Exclusive Retailer of Cricket, we focus on creating a customer experience that distinguishes us from others. We take pride in offering personal and professional services along with products that meet the needs of our valued clients. We operate with a high level of integrity and thrive on innovation that allows our customers to take advantage of a 5G LTE Network with no annual contract through 550+ retail locations across the USA. Mobilelink is becoming revered as the company of choice when purchasing all your wireless needs or when looking for a new venture with your device.
Infostealer activity detected by HudsonRock

Compromised Employees: 38

Compromised Users: 9

Third Party Employee Credentials: 83

External Attack Surface: 47

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • help@hover.com
  • domainabuse@tucows.com
MX Records
  • mobilelinkusa-com.mail.protection.outlook.com.
TXT Records
  • _globalsign-domain-verification=QqImMXhO3QrC30scHiIb8zEMVzujcjTfJXwVBbHrEt
  • apple-domain-verification=irDEO3xPYdKVqyHm
  • v=spf1 include:spf.protection.outlook.com include:emailsrvr.com include:amazonses.com -all
  • _globalsign-domain-verification=VhPANTLpvayHJ1N-ai9V1scFquq_kdynJfaj6vq-2i
  • hXMqWOrPDYlu+yRZ5yOW9l8lP6CDdutXnLAS2E3edd4=
  • google-site-verification=WrV3dZ3hiVwyHvpgP7ntRl-vawjWYqwvxIggRJZhdpw
  • MS=D7D7B9CDE6031419185D4DFD5ECBDCC6BFD46189
  • MS=ms50221258
Cloud / SaaS Services Detected
Apple Amazon SES/WorkMail Microsoft 365

Leak Screenshot:

Leak Screenshot

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.