CESI
CESI
Group: termite
Discovered by ransomware.live: 2025-02-11
Estimated attack date: 2025-02-11
Country:
Description:
CESI is a private French higher education and vocational training group specialising in training engineers, managers, technicians and supervisors.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 14
Compromised Users: 1143
Third Party Employee Credentials: 16
External Attack Surface: 108
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- support support.gandi.net
- c5f869ef9d8dcf413d4d0c71588153fc-40164840 contact.gandi.net
- d58dfdff4cc63c6682f4bb44da3a4a37-40084828 contact.gandi.net
MX Records
- cesi-fr.mail.protection.outlook.com.
TXT Records
- google-site-verification=bKTQ40-ZuDbEXTCwt74UTPm09HEW634CSMRrjlKZErc
- mailo=PiRh13vQ2W9b6t5ZhFS2M31ZXHXlpGJ4
- cisco-ci-domain-verification=7c36adb0a3482c34542a1e1735f3b09ea810a68fb993196a96c338112fb2ba3b
- ZOOM_verify_WxuYojhCTlyAvXzKAY4aqg
- v=spf1 mx include:_spf.salesforce.com include:spf.protection.outlook.com include:net4all.ch include:aspmx.pardot.com include:_spf.netanswer.fr include:mailo.com include:sendgrid.net -all
- docusign=d7988d44-7101-42c2-bfaa-a446e44d23a5
Cloud / SaaS Services Detected
Salesforce
Cisco
SendGrid
DocuSign
Zoom
Leak Screenshot:
