On IT
On IT
Group: termite
Discovered by ransomware.live: 2025-04-11
Estimated attack date: 2025-04-10
Country:
Description:
Provider of information technology services focused on digital transformation for enterprises. The company specializes in offering small and medium enterprises managed services, data analysis with Power BI, digital project management, technical training and IT support services, thereby enabling companies to modernize and uncomplicate their processes and offer technological support.
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- activation combell.com
- abuse combell.com
- info domain-contact.org
MX Records
- weareonit-com.mail.protection.outlook.com.
TXT Records
- v=spf1 ip4:82.143.87.50 ip4:194.78.103.34 ip4:212.123.10.48/28 ip4:46.240.135.254 ip4:81.82.211.83 ip4:81.82.250.121 ip4:154.63.66.16 ip4:154.63.66.2 ip4:81.95.117.226 ip4:79.132.231.86 include:spf.protection.outlook.com a:mwe1-cbc-aks.westeurope.cloudapp" ".azure.com include:servers.mcsv.net include:spf.eu.exclaimer.net include:autotask.net include:_spf.telavox.se include:spf.flowmailer.net -all exp=_spfexp.weareonit.com
- zoho-verification=zb19641699.zmverify.zoho.eu
- MS=ms31890072
- hq10ieqbrokvv5qah33odbi2j5
- fc6iarqrdhet9qlprqkjqmsp
- google-site-verification=IFECPi13N2g8I8igv3PODvG_fPML1LcjqNLuhDt0i64
Cloud / SaaS Services Detected
Microsoft 365
Zoho Campaigns
Leak Screenshot:
