Kotliva
Kotliva
Group: fog
Discovered by ransomware.live: 2025-03-06
Estimated attack date: 2025-03-05
Country:
Data exfiltrated: 37 GB
Description:
Extract from The 19 biggest gitlabs
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 6
Compromised Users: 52
Third Party Employee Credentials: 17
External Attack Surface: 33
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- koltiva-com.mail.protection.outlook.com.
TXT Records
- google-site-verification=z0pa9jqocnr0bHxwAamqYiQ2J6eCUsFgmhI9POAzrVU
- v=spf1 include:spf.protection.outlook.com -all
- MS=ms78507298
- google-site-verification=294qR6qh9NACv2qosd7_awrvog5_FQuElgQ7YAy-aRk
- google-site-verification=MExlrgtFTm3D7f32bE_4oMO1uGWii6dSIuy9ic3viJE
Cloud / SaaS Services Detected
Microsoft 365
Leak Screenshot:
