Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo lamundialdeseguros.com

Group: babuk2

Discovered by ransomware.live: 2025-01-27

Estimated attack date: 2025-01-27

Country: CO

Description:

lamundialdeseguros.com

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 3

Compromised Users: 0

Third Party Employee Credentials: 3

External Attack Surface: 7


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse-contact publicdomainregistry.com
MX Records
  • mail.lamundialdeseguros.com.
  • mail1.lamundialdeseguros.com.
TXT Records
  • google-site-verification=4yPBxiL-_d6o-d_BeVYOaL7OsiWM2KTje2ULN1yCNGw
  • google-site-verification=F_MAvV5OgruguKhh5mVXvK4u4-5Zm8nAS90jsXkLjW8
  • google-site-verification=udF-zz-hqb2P0aFh4F7VfUDGk_GUYbPeKH3Mwkrn_K4
  • v=spf1 ip4:161.129.68.42 include:spf-c.mailbaby.net ip4:148.113.153.223 include:relay.mailbaby.net ip4:15.235.53.212 ip4:15.235.50.134 include:spf.ipzmarketing.com +a +mx +ip4:190.6.31.84 ip4:200.75.131.138 ~all
  • apple-domain-verification=gA1mt4cT83zmNHBQ
Cloud / SaaS Services Detected
Apple

Leak Screenshot:

Leak Screenshot