Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Regionale Verkehrsbetriebe

Group: play

Discovered by ransomware.live: 2025-04-02

Estimated attack date: 2025-03-21

Country: CH

Description:

Switzerland

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 0

External Attack Surface: 1

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • rvbw1.cleanmail.ch.
  • rvbw2.cleanmail.ch.
TXT Records
  • Sendinblue-code:6ef1bdca0140128a0b0cdffd769c529f
  • MS=AD38A22ED573F9F2FCCA0210F51B8B6F8B95CD73
  • v=spf1 a mx include:spf.mtasv.net include:spf.iway.ch include:spf.sendinblue.com a:mail.rvbw.ch include:spf.protection.outlook.com ip4:194.209.230.236 ip4:80.74.147.132 ip4:5.148.183.98 -all
Cloud / SaaS Services Detected
Sendinblue

Leak Screenshot:

Leak Screenshot