air europa
air europa
Group: incransom
Discovered by ransomware.live: 2025-01-29
Estimated attack date: 2025-01-29
Country:
Description:
Air Europa, the airline of the Globalia tourism group, is a full member of the SkyTeam Alliance. Committed to the environment and always boasting the latest technology, Air Europa has the highest standards of quality and safety. We have a lot of clients private information in our hands.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 16
Compromised Users: 8480
Third Party Employee Credentials: 7
External Attack Surface: 102
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse interdominios.com
- contact privacyprotect.org
- info interdominios.com
MX Records
- mxa-004e6601.gslb.pphosted.com.
- mxb-004e6601.gslb.pphosted.com.
TXT Records
- v=spf1 mx a ip4:91.240.56.0/22 ip4:149.72.114.246/32 ip4:82.150.225.79/32 ip4:168.245.56.239/32 include:_relay.amadeus.com include:amazonses.com include:spf.protection.outlook.com include:spf-004e6601.pphosted.com include:airspf.aireuropa.com -all
- atlassian-domain-verification=xax2mq47yH6NqhesnAV8DAkSIjneEFBgl4UDvmKY1dYGsgNrIVWeBPWHqJcAfNRA
- google-site-verification=kiOVWa1UgmVerfcbSGy0IwQBwt4_LK715_6f6uLM3aw
- MS=ms77594495
- brevo-code:9d31cc072e409cf67defa36d3464a861
- google-site-verification=ACETxBqDF_QUrye0lztIGDgMdhOmJY1oduZiGghN6nM
- 3UgIB7WPQkJ9LWbgj7hU9iWlwW28gdtolyzKIE6wEl2ZZUAcMD7j7zYy0HVzxhBxLg6G6Gpb5oPZvG1EHIb86A==
- apple-domain-verification=cm1iMq5p0iBVIb26
- brevo-code:6ddf9cb2ddca408644b47b77bfdc7eb5
Cloud / SaaS Services Detected
Apple
Atlassian
Amazon SES/WorkMail
Microsoft 365
Leak Screenshot:
