Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Desjardins Banking/Group

Group: Coinbasecartel

Discovered by ransomware.live: 2025-09-15

Estimated attack date: 2025-09-15

Country: CA

Description:

Desjardins founded the Caisses Populaires Desjardins (Desjardins Group). First headquartered in Levis, the group grew to become the largest associa...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 25

Compromised Users: 9301

Third Party Employee Credentials: 39

External Attack Surface: 113

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusecomplaints markmonitor.com
  • domaines desjardins.com
  • whoisrequest markmonitor.com
MX Records
  • mx2.hc784-89.ca.iphmx.com.
  • mx2.hc115-59.ca.iphmx.com.
  • mx1.hc784-89.ca.iphmx.com.
  • mx1.hc115-59.ca.iphmx.com.
TXT Records
  • mDPVvNewpuidVeTMUE9/r0AtYu/2ZSIJjWPOIAq/YiQ=
  • dITnCRb+BndR0spOPCMCFtu/baXuxtl2BiPC8mVDwmfiXgvQqp4zaVwCPIDW6oiaPSYSkCfJG5QbYTGneF5qww==
  • onetrust-domain-verification=b47dc522ad54451e85c74ad40d00274c
  • docker-verification=129880c3-b253-47c8-94cd-b25f53a7d666
  • Fap7FDLU=980f146df1586ae47db515a50049e7d9
  • stripe-verification=a9b9e9f3fb487ab2104aad0d5e17b1e43df10a0699bf26a89ecb87770e84e400
  • hcp-domain-verification=5510de9b44833c08a4e432ce97960a9cd1b4c2283d55236466e56bbd6f8c3a92
  • google-site-verification=yErtJLJatwlLP6ruI4KPe2yU6kJGqbHTI9VdOru_Stk
  • launchdarkly-domain-verification=c9467cd6-98ad-4924-9aac-6776a763b597
  • onetrust-domain-verification=c30f54c3ea4b4d9d96b4b944e801332c
  • miro-verification=659c255f11475ca1228327ef7ee9f50b4713cddc
  • MS=ms11057274
  • dropbox-domain-verification=7pxpzltslb0a
  • Dynatrace-site-verification=337ae560-c13a-44fc-8678-40b6ae4f7f76__33rs0is84vgmh2566a1sv54rf3
  • google-site-verification=HC9bn6_gTfrz3cg1sBCUnPIEAYjeuxolTl7zUsb8aaQ
  • postman-domain-verification=2c9cc9ca486f227bef1d1cc3c4eb9202a0e54f8ed9170bb378afd11d6a83b80a
  • v=spf1 exists:%{i}.spf.hc115-59.ca.iphmx.com include:sendgrid.net include:_spf.bluematrix.com include:spf.protection.outlook.com include:_spf.desjardins.com exists:%{i}.spf.desjardins.com -all
  • google-site-verification=b9bk_4g21WD5MRK9gm3zcbArl_xBpHoRX20IZkfdgKg
  • f39vqMOk4J-fn0ORCfQagGtH
  • mindmanager-verification=9dddde7e9531b9f9375090d34d68df60e318871bea5f3129962ab4fee8d33033
  • adobe-idp-site-verification=f57147b92528dac5f4dfce9cbf748d6557da2bacaa24321eacf024f953a9ccea
  • atlassian-domain-verification=DuYWksqGR9bn52h6ePphHr4sABCc0OGLlJVCeOAvq4CX66IzLAltPH4CHd4lTmIq
  • google-site-verification=tINRiTzweVZ7fegRatwv8_b_nWXEizP1xSeFjJFHM6U
  • apple-domain-verification=YBwYQWkNAwMI47yB
  • Dynatrace-site-verification=372f8824-4ca0-47f0-aa5a-d980c01c4268__feekk0f8dhie9s0p4p93mkqbkf
  • adobe-idp-site-verification=c227e5381c5e4a8773d06eab4961aa35a036209d3a8454408297ddf2c2f40491
Cloud / SaaS Services Detected
Adobe Apple Atlassian Box Dropbox Microsoft 365 Stripe Miro SendGrid OneTrust

Leak Screenshot:

Leak Screenshot