Therme Laa Hotel and Silent Spa
Therme Laa Hotel and Silent Spa
Group: 8base
Discovered by ransomware.live: 2024-02-07
Estimated attack date: 2024-02-07
Country:
Description:
Therme Laa - Hotel & Silent Spa is one of nine resorts in the VAMED Vitality World, the number one in Austrian spa and health tourism.therme-laa.at
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 13
Third Party Employee Credentials: 0
External Attack Surface: 11
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- safemail-intb.nanet.at.
- safemail-intb-therme.nanet.at.
TXT Records
- v=spf1 mx a ip4:92.243.62.0/24 ip4:209.242.69.231 ip4:213.133.104.19 ip4:212.27.79.46 include:_spf.senders.scnem.com include:agenturserver.de include:_spf.travelclick.com include:mailgun.org include:spf.myincert.com ~all
- google-site-verification=zhCZYFXFm3lI2BtYi8x6s50CHQoVnpWe5RG1-ssPXVs
- knowbe4-site-verification=4df7d172636c85a0ca0e4a35a7ec949c
- facebook-domain-verification=ito1ptom07zcfk9egxtdduk17x3su8
- 1h839arj4o8nc8iqgj4apr4net
Cloud / SaaS Services Detected
Mailgun
KnowBe4
Leak Screenshot:
