TUV India Pvt. Ltd.
TUV India Pvt. Ltd.
Group: ransomhouse
Discovered by ransomware.live: 2025-03-13
Estimated attack date: 2025-01-03
Country:
Description:
TUV India offers a comprehensive & diverse range of technical services to its large clientele of several thousand customers that includes leading corporate houses, public sector organizations, and medium and small scale enterprises.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 13
Compromised Users: 38
Third Party Employee Credentials: 40
External Attack Surface: 21
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- sece.leitstellenservice telekom.de
MX Records
- mail.tuev-nord.de.
- mail2.tuev-nord.de.
TXT Records
- MS=ms69983047
- cisco-ci-domain-verification=4b6605e4276b2937084557f31283ad94a00f852b6f3d00a7b1a83e5818c60d45
- miro-verification=2253b565e3418b92883ffa4e2b9a9b11bead108a
- MS=8102ACBF32B60DAB5CA495891B8D77754D63CE78
- apple-domain-verification=7aQyOFv20pv93cmq
- v=spf1 ip4:185.39.104.38 ip4:185.39.104.33 ip4:185.39.104.32 ip4:185.39.104.15 ip4:185.39.104.9 ip4:185.39.104.10 -all
Cloud / SaaS Services Detected
Apple
Microsoft 365
Miro
Cisco
Leak Screenshot:
