Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Grupo DIRIA

Group: dragonforce

Discovered by ransomware.live: 2025-08-27

Estimated attack date: 2025-08-27

Country: CR

Description:

Grupo Diria is a provider of luxury accommodation in Tamarindo Beach, Costa Rica, offering a range of hotels and resorts. The company is committed to respecting cultural traditions while ensuring modern comfort and security for its guests. Their mission is focused on tourism and hospitality, delivering an authentic Costa Rican experience. Intended clients include travelers seeking high-quality lodging and an immersive cultural experience.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 1

External Attack Surface: 3

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mx-cluster-usa04.hornetsecurity.com.
  • mx-cluster-usa01.hornetsecurity.com.
  • mx-cluster-usa03.hornetsecurity.com.
  • mx-cluster-usa02.hornetsecurity.com.
TXT Records
  • google-site-verification=KIbQISj_7gao5wqh5tlMzSaFRbD5-Ffsmxu6ntgThYE
  • _cf-custom-hostname.qr
  • v=spf1 +a +mx include:spf.hornetsecurity.com include:_spf.grupodiria_com._d.easydmarc.pro ~all
  • klaviyo-site-verification=TSwCsQ
  • tkfTb9Qnh6N5s3opwx330gRIn1HVnQUxbQ-YvNNHiKo
  • fd426421-4e9d-48cd-8c3e-87d2de57afb4
  • _acme-challenge.qr
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot