eviivo.com
eviivo.com
Group: lockbit3
Discovered by ransomware.live: 2024-05-06
Estimated attack date: 2024-05-06
Country:
Description:
eviivo Login - The Original All-in-One Booking SuiteHello again! Sign in to your eviivo suite account to view you booking calendar.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 2
Compromised Users: 167
Third Party Employee Credentials: 13
External Attack Surface: 32
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- eu-smtp-inbound-2.mimecast.com.
- eu-smtp-inbound-1.mimecast.com.
TXT Records
- 0ed1fe018aeb2aed55c67a4beb8a126f9c8932b407
- v=spf1 include:eu._netblocks.mimecast.com include:spf.mandrillapp.com include:customers.clickdimensions.com include:spf.sendinblue.com include:_spf.eu.messagegears.net ip4:213.32.139.114 ip4:213.32.140.102 ip4:213.32.143.206 ip4:77.32.209.86 ip4:77.32.209" ".106 ~all
- Sendinblue-code:8d334b6ffdee61a4a464eb21bc801503
- amazonses:H6V1EQPPBXrjfe2oL5a66xqoP+KM4uWFx1eYlCEjl5M=
- google-site-verification=TKPcArqvRikCF22noX_2FpXW6olBvQ-oJPO_VBelbtw
- nn1vbs8mdwt5x2r23gtb3qg4xmfc1s7s
- MS=91026C20B1D6143B9282E55134188754C3CA55B3
- _8k9tphl812483l4z782ok9fqevwkv84
- brevo-code:b27c2d5d01a802be49dd4120efb36237
- atlassian-domain-verification=N5L2RFC99/57S6zE/xS35aamptZL6TcQExvZzrAVGOVNasHNHJ8kbAckCdPzo5Z/
- _61qhxtq4o5gmq1tertkwd1xpelshvhz
- google-site-verification=HFDYiTxxRXAkH5GGDEFyzyz04PYtNxLKox-8nllHwxw
- MS=ms53860736
Cloud / SaaS Services Detected
Atlassian
Amazon SES/WorkMail
Microsoft 365
Mandrill
Sendinblue
Mimecast
Leak Screenshot:
