Buldi
Buldi
Group: Qilin
Discovered by ransomware.live: 2025-10-14
Estimated attack date: 2025-10-14
Description:
Buldi offers a platform for individuals looking to build or expand their homes by configuring their ideal project online. Users can receive up to six personalized proposals from qualified construction professionals in their region. The servic ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 143
Third Party Employee Credentials: 0
External Attack Surface: 6
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- support ovh.net
- di2asr6iy3166ikamw3e w.o-w-o.info
- aev0j3rvu05dm1kem4gw y.o-w-o.info
- tech ovh.net
MX Records
- alt4.aspmx.l.google.com.
- alt3.aspmx.l.google.com.
- aspmx.l.google.com.
- alt1.aspmx.l.google.com.
- alt2.aspmx.l.google.com.
TXT Records
- atlassian-domain-verification=SBVz5qfbyU3JZuhNQpjetQQACOkazaU2ax50ZXknE8/aKTvnKnSCiBhW7dzrt/Oj
- brevo-code:07df7fc342d64221af0fd4c490206e61
- 1|www.buldi.fr
- v=spf1 a mx include:mx.ovh.com include:spf.mandrillapp.com include:_spf.google.com ~all
- google-site-verification=J_l8afDi4-_2mST1yFXkQhq6nnPGlpxQWFsGeehOp6g
- facebook-domain-verification=kudw3hlsmaca3r875189vnklqx9pwt
Cloud / SaaS Services Detected
Atlassian
Mandrill
Leak Screenshot:
