Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo lamundialdeseguros.com

Group: funksec

Discovered by ransomware.live: 2024-12-13

Estimated attack date: 2024-12-13

Country: CO

Description:

[AI generated] La Mundial de Seguros is an insurance company that offers a variety of insurance products and services. These typically include auto, home, health, and life insurance policies, catering to both individual and corporate clients. The company focuses on providing comprehensive coverage options and personalized customer service to meet the diverse needs of its clientele.


🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 3

Compromised Users: 0

Third Party Employee Credentials: 3


External Attack Surface: 7



DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse-contact publicdomainregistry.com
MX Records
  • mail1.lamundialdeseguros.com.
  • mail.lamundialdeseguros.com.
TXT Records
  • v=spf1 ip4:161.129.68.42 include:spf-c.mailbaby.net ip4:148.113.153.223 include:relay.mailbaby.net ip4:15.235.53.212 ip4:15.235.50.134 include:spf.ipzmarketing.com +a +mx +ip4:190.6.31.84 ip4:200.75.131.138 ~all
  • google-site-verification=4yPBxiL-_d6o-d_BeVYOaL7OsiWM2KTje2ULN1yCNGw
  • google-site-verification=F_MAvV5OgruguKhh5mVXvK4u4-5Zm8nAS90jsXkLjW8
  • apple-domain-verification=gA1mt4cT83zmNHBQ
  • google-site-verification=7HwW2aG02h_zJDhg3deyTH3vYz-jX71dbbXPlOObEDE
  • google-site-verification=udF-zz-hqb2P0aFh4F7VfUDGk_GUYbPeKH3Mwkrn_K4
Cloud / SaaS Services Detected
Apple

Leak Screenshot:

Leak Screenshot