Group DIS (Direct Info Services)
Group DIS (Direct Info Services)
Group: alphv
Discovered by ransomware.live: 2023-07-26
Estimated attack date: 2023-05-15
Country:
Description:
Provider of web hosting, cloud and managed services based in Lille, France. The company specializes in high-availability hosting and outsourcing of applications, high-traffic websites and information systems, enabling quality services for customers and allowing them to expand their offers without investment.
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse support.gandi.net
- d5ff15c72bbeb4f55624eee8dec84f41-407433 contact.gandi.net
MX Records
- groupdis-com01c.mail.protection.outlook.com.
TXT Records
- v=spf1 a mx include:mail.directinfoservice.com include:spf.mailjet.com include:spf.sendinblue.com include:spf.protection.outlook.com ip4:185.111.57.133 ~all
- MS=ms59709427
- MS=017E798D11D133BA0580C44C323A5D4635417B92
- Sendinblue-code:82148850b29293798f889d64d6fa5492
- asn-verification=122d8c1018744577d2809fa3117d8f19846c4f724bc8b2a39fb11e8298b5922e
- google-site-verification=KY7vmFbVtTwXjHjle-iA2-s7YDUDF2719tJ5I1gpjlc
- teamviewer-sso-verification=3651257ab19c474a81e004a2f3c7939d
Cloud / SaaS Services Detected
Microsoft 365
Teamviewer
Mailjet
Sendinblue
Leak Screenshot:
