Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo SOLEIL

Group: fog

Discovered by ransomware.live: 2025-02-04

Estimated attack date: 2025-02-04

Country: FR

Description:

Extract from Gitlabs: hemio.de, SOLEIL, Devlion

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 4

Compromised Users: 30

Third Party Employee Credentials: 4

External Attack Surface: 21


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domaine renater.fr
  • secretariatdg-soleil synchrotron-soleil.fr
  • jean-daillant synchrotron-soleil.fr
  • brigitte.gagey synchrotron-soleil.fr
  • support-dns renater.fr
  • pascal.gattoni synchrotron-soleil.fr
MX Records
  • synchrotronsoleil-fr02i.mail.protection.outlook.com.
TXT Records
  • +G2kaLxBStkTpoKa7sAtjOzRJmA=
  • tuqOM+E87bx2Ot8X2c3fzOjEL6U=
  • MS=ms82193971
  • v=spf1 ip4:195.221.0.32 ip4:195.221.0.33 include:spf.protection.outlook.com include:webindustrie.fr ~all
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot