btci.com
btci.com
Group: blackbasta
Discovered by ransomware.live: 2024-12-04
Estimated attack date: 2024-10-25
Country:
Description:
BT Group plc (formerly British Telecommunications plc, abbreviated to British Telecom) is one of Europe’s leading providers of telecommunications services.SITE: www.btci.com | www.btconferencing.comALL DATA SIZE: ≈500gb 1. Finacial data 2. Organisation data 3. Users data and personal docs 4. NDA’s, Confidential data & etc…
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 8
Third Party Employee Credentials: 0
External Attack Surface: 4
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- mail.btci.com.
TXT Records
- cisco-ci-domain-verification=110eb2f6d2d959fba1e77833d7bcc42724bec57794773b925270fb24c26d5e84
- gd478l8pxvj4l2gk410kfy6hm4hq9kv3
- v=spf1 mx a a:m.btci.com a:ticket.btci.com include:mktomail.com ip4:63.170.232.0/24 ip4:63.211.253.0/24 ip4:63.173.44.0/27 ~all
Cloud / SaaS Services Detected
Marketo
Cisco
Leak Screenshot:
