Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

keytronic.com

keytronic.com

Discovered 2024-05-31 12:21 UTC
Est. attack date 2024-05-06
Country US

Description:

Keytronic has been manufacturing products overseas for over 25 years, first as an OEM, now as an manufacturing provider. You benefit from our global facilities while still working with a US based company. Our customers are some of the world’s leading OEM’s.SITE: www.keytronic.com Address : N. 4424 Sullivan Road Spokane Valley, WA 99216 USAALL DATA SIZE: ≈530gb 1. HR, Finance, Engineering… 2. Corporate data 3. Home Users Data & etc…

Infostealer activity detected by HudsonRock

Compromised Employees: 4

Compromised Users: 8

Third Party Employee Credentials: 8


External Attack Surface: 5


Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operationsweb.com
MX Records
  • keytronic-mx2.titanhq.com.
  • keytronic-mx1.titanhq.com.
TXT Records
  • cd761k8vk840af8cn034d3agk8
  • MS=F815E38428F84F7B25785F3139DF35D32B1762DB
  • klaviyo-site-verification=Xhm8Vb
  • 28rveee2gde22cna0oso6l750b
  • v=spf1 a mx ip4:116.246.23.211 ip4:146.206.25.33 ip4:146.206.25.44 ip4:168.245.212.78 ip4:168.245.212.76 include:spf.polydyne.com include:spf.protection.outlook.com include:spf-westus.emailsignatures365.com include:mail.zendesk.com include:amazonses.co" "m -all
  • TQ0N9dUnS+PJ5LBTojunZFbHIfp3dd1y7CbrZXsoQUQtiIhsCbNOywiTHY/lhp5Sb/qaYVhRM7gBPDb8nhCl3w==
  • p8R6Vt6SmttbHxFcKSIJNQhdnivQojbJ93PZ/CpoyoPkFLzFDE8NGmj7xTuOMwRhpMOcW6mGMHBOdeazdyOWDg==
  • MS=ms31341859
  • MS=ms17244641
  • MS=ms41849819
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365 Zendesk

Leak Screenshot:

Leak Screenshot