Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo havenresorts.com

Group: safepay

Discovered by ransomware.live: 2025-03-11

Estimated attack date: 2025-03-11

Country: MX

Description:

Enjoy sanctuary of luxury and sophistication at Haven Riviera Cancun, an adults-only, all-inclusive resort located between Cancun & Riviera Maya.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 3

Third Party Employee Credentials: 1

External Attack Surface: 2

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • legalservices eurodns.com
  • dominios joopbox.com
  • soporte joopbox.com
MX Records
  • havenresorts-com.mail.protection.outlook.com.
TXT Records
  • MS=ms83044713
  • v=spf1 a mx include:_spf.google.com include:_spf.travelclick.com include:spf.protection.outlook.com include:emailsrvr.com -all
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot