Los Andes
Los Andes
Group: akira
Discovered by ransomware.live: 2025-01-06
Estimated attack date: 2024-12-09
Country:
Description:
Diario Los Andes is a morning newspaper published in the city of Mendoza, Argentina, owned by Grupo Clarín and the heirs of the Ca lle Family. We are ready to upload a lot of private corporate documents inclu ding: financial data (audits, payment details, reports), contact numbers and e-mail addresses of employees etc.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 9
Compromised Users: 571
Third Party Employee Credentials: 16
External Attack Surface: 101
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- losandes-com-ar.mail.protection.outlook.com.
TXT Records
- google-site-verification=c3abZlqHnCSJGq8FWWC48E3xX4GKokEY8QBdYUiFtNA
- google-site-verification=sa1pCc9BC2vM-wAEgUXzs7h3pLVB5aFKvMPVpcls_Kw
- google-site-verification=vzGZ0GAWO3G6zL7dChFL-meQkled_X5W-gd6lPM29IM
- oDq+KkHNeINnBOWMBxFqO381l3RksMAwAucIMBojd/q/jPp4fuw5biRGxgvY70Jf5/k+y4IQhE8RaYa/qrWhRA==
- v=spf1 include:_spf.createsend.com include:spf.hostmar.com include:spf.fromdoppler.com include:spf.protection.outlook.com include:spf.mandrillapp.com include:_spf.embluemail.com " "ip4:209.13.177.163 ip4:190.3.11.100 ip4:190.3.11.119 ip4:190.3.11.98 ip4:54.187.108.243 ip4:209.13.177.162 ~all
- MS=27F3F72D6615C0FADE8BC8B88CD56038EC2F2D10
- MS=ms96409125
- facebook-domain-verification=1lmh3o60pogp8fz1x04i6cyo9dnjut
- google-site-verification=0F4DtLAHBLiWaZBc5_r63bh2kJvBQR0NFDbrZvn7TUQ
Cloud / SaaS Services Detected
Microsoft 365
Mandrill