Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo divgroup.eu

Group: safepay

Discovered by ransomware.live: 2025-07-16

Estimated attack date: 2025-06-03

Country: SK

Description:

[AI generated] N/A

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 5

External Attack Surface: 1

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • mail2.divgroup.eu.
  • mail.divgroup.eu.
TXT Records
  • v=spf1 +a +mx +ip4:178.218.166.48 include:spf.protection.outlook.com include:brodosplit.hr include:mojsite.com include:servers.mcsv.net +ip4:95.216.6.140 -all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot