Ransomware.live - Victim: gbmme.com

Description:

Founded in 1990, based out of Abu Dhabi, United Arab Emirates, Gulf Business Machines (GBM) is a IT solutions provider, fulfilling the IT requirements of local, regional and international organisations in the GCC. We have 200GB of data at our disposal (fiscal data, internal mail,budgets and many other things)

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 14

Compromised Users: 7

Third Party Employee Credentials: 53

External Attack Surface: 11

Infostealer Distribution

WHOIS Emails

abuse@godaddy.com

MX Records

gbmme-com.mail.protection.outlook.com.

TXT Records

sending_domain682563=9fbfa91688a7595ac1b230b64cb92fabadc0365ca43c93b146d2b80f25f79030
google-site-verification=oqjb4DGjKEtgbigHS8ltHdapCNxU5VGOjYVEgGpS3Yk
fq7l66t530wfwgcp7c0mvxbm0bqqbpqb
MS=4813836720B12BE59D031E08D2546446CD7A52AF
5xemERWWNk5n+OtkDrFwu0CivtkjoIxEbzg//zIlryc=
google-site-verification=p64XgykkL6c7fsTuR2Y-W1G372Gk7gAKYd9yZgrWFKU
pardot682563=edb9c58532e3060bfbffe34311b8a10448381d65cde602158010a237ec3148d4
v=spf1 ip4:195.229.90.20 ip4:195.229.90.19 ip4:45.143.62.198 ip4:18.184.6.74 ip4:130.214.250.241 ip4:130.214.250.239 ip4:45.143.62.222 include:spf.protection.outlook.com include:_spf-dc22.sapsf.com include:spf.emarsys.net include:_spf.salesforce.com -all
atlassian-domain-verification=mK9Yzp8dPQAWLazHKpSoGne1aImFO3Hwcace1UYZKLfXwSwpwGmSBWiZWHy4hkSZ

Cloud / SaaS Services Detected

Atlassian Salesforce

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.