Ransomware.live - Victim: AKTO

Sponsored by Hudson Rock – Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

AKTO

akto.fr

Group: Nitrogen

Discovered by ransomware.live: 2025-03-31

Estimated attack date: 2025-03-31

Country:

Description:

A French company specializing in digital learning and training solutions. It focuses on providing tools and services to improve corporate training, ensuring that companies can effectively upskill their employees.

Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 104

Third Party Employee Credentials: 1

External Attack Surface: 9

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails

n.thuillier@fafih.com
afnic@amen.fr

MX Records

akto-fr.mail.protection.outlook.com.

TXT Records

v=spf1 include:spfcloud.letsignit.com include:spf.protection.outlook.com include:amazonses.com include:sendgrid.net include:md02.com include:spf.mailjet.com include:_spf.salesforce.com ip4:146.59.200.80 -all
atlassian-sending-domain-verification=bb2524aa-f6cb-4d71-bcd9-243532f5bdad
pUzPUKQivP7cuygyF3rXrEKmFHKA6VaSoyCQkEDFIdU=
apple-domain-verification=o3uYKIFffCWBgYHu
MS=ms44399392
google-site-verification=W2eHtZ6ec2f8Hx8XBv167EOqIlzZfQ7wBM-nDryK9ck

Cloud / SaaS Services Detected

Apple Amazon SES/WorkMail Microsoft 365 Salesforce Mailjet SendGrid

Leak Screenshot:

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.