Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks


Discovered 2026-07-14 13:54 UTC
Est. attack date 2026-07-14
Country IT

Description:

SITAV specializes in the construction, maintenance, revision, and restoration of trains and railway vehicles, ensuring maximum efficiency for high-speed trains, regional transport carriages, trams, and subways. The company has been operational since its founding, providing corrective and ordinary maintenance services primarily for Trenitalia. With a focus on innovation and safety, SITAV employs a team of experts and advanced technologies to guarantee that every vehicle is in perfect operational condition. Their services also include revamping, which modernizes existing trains to enhance the travel experience.

Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 3

Third Party Employee Credentials: 1


External Attack Surface: 3


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • sitav-eu.mail.protection.outlook.com. Microsoft 365
TXT Records
  • v=spf1 include:spf.protection.outlook.com include:spf.eu.exclaimer.net include:spf.egsinetworks.com include:_spf.dinamoweb.com ~all
  • google-site-verification=mRWqF-r__t_ZlIcbRon86i2kMgEA_Y0GlXjcAdY1ctE
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot