Harvest
Harvest
Group: RunSomeWares
Discovered by ransomware.live: 2025-04-10
Estimated attack date: 2025-04-10
Country:
Description:
Harvest is a French TechForFin of more than 35 years in full development. Harvest is the leading FinTech in France for software dedicated to the wealth management and finance
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 54
Third Party Employee Credentials: 0
External Attack Surface: 29
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- support support.gandi.net
- b461a7d50a2c11838361e25dbc53dc27-1155308 contact.gandi.net
- ndd adista.fr
- noc gandi.net
MX Records
- harvest-fr.mail.protection.outlook.com.
TXT Records
- atlassian-domain-verification=iJpbrmaJ7SzczcglYKCmZvGrxG3/oKMvMi5UQ9ZMrB3nticgMNfNbViDtks4HHpz
- MS=F392C8D10004334F73E75E8B2CA6128ACFCFC736
- O3@-Q8$-2F%
- CE2Pg+nVQlP7IlZGjGJNP/wBWI4=
- CertEurope=Z5qE3327TSB9rxr9YvA4Ef5p5ftNiQ
- v=spf1 ip4:194.177.32.249 ip4:37.187.154.193 ip4:194.177.50.201 ip4:194.177.54.4 ip4:91.209.154.123 ip4:194.177.57.241/32 ip4:194.177.57.242/32 ip4:194.177.57.248/32 ip4:194.177.60.5/32" " include:spf.rp01.net include:mta.spf.waycom.me include:et._spf.pardot.com include:_spf1.mailgun.org include:_spf2.mailgun.org include:_spf.eu.mailgun.org include:_spf.salesforce.com include:spf.protection.outlook.com -all
- _globalsign-domain-verification=tmYrwnxn__HruK4rmYTrz1P62zTc9olt8YK619y6MK
Cloud / SaaS Services Detected
Atlassian
Salesforce
Mailgun
Leak Screenshot:
