Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo pv.be

Group: killsec

Discovered by ransomware.live: 2024-09-09

Estimated attack date: 2024-09-09

Country: BE

Description:

P&V is a Belgian cooperative insurance group based in Belgium. We have compromised a third-party provider and exfiltrated data related from SaaS enterprise clients. This company is implicated in the breach, and we will publish all relevant documents if a resolution is not reached.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • smtp2.pvgroup.be.
  • smtp1.pvgroup.be.
TXT Records
  • pardot_71272_*=ab5672fb0adabf2c7759e19bbf93406388e1141e9d7d95433a84155f0fd334fa
  • Dynatrace-site-verification=aaa603c1-58b3-40a5-83c6-9970fc140f5f__mda01k78uqodb8bbdrekaqoqsd
  • vh0kvjgktmbpsst9b013abubsa
  • bh0c426rrg2bqv3cpnbmqrub9r
  • NuqE+3ncID0+CzcTsRxPy+kN1rVlZCqDY+Wq3dBwnzA7ak/7We2XysZf1tgSE1aZhKM9rFlcXWM+u248bmQrZA==
  • v=spf1 include:pvgroup.be ~all
  • google-site-verification=b-LcnnQKd96TMcfBfC6nJeV-TcmYubytHiMm_OAgmD8
  • knowbe4-site-verification=e24f1d19b1d9b41582c0af9ba9ae9f36
  • sc0j6u5katbvn9e8sb81touhn5
  • 5wsIuzztULqighsNvzxTWCngYzJRqZRm772joZIlk4GkGydx/2Ii/BngtyohQIsHKDZCY5H4iTeKcZvwLDZKZA==
  • Sendinblue-code:bf2f9300278a28a46df7ca01c80d2d57
  • MS=ms70138441
  • n72al89q4hlc839qas3mquh04l
  • l3ii2h0rdnp6eln8kqo184lp5l
  • atlassian-domain-verification=jDHnGldqAHIDuuIUTmAvyIFLwEqkUCXCr//g3wvlEhmNaytH8i3pV6HEtlpbulkH
  • gmqfhjj96f8nsu133bi7bfphcq
  • um2r34gmpm7jn69oektmtp65g
  • mentimeter-adf82144-682e-4459-93d3-041c9e2d26ae
Cloud / SaaS Services Detected
Atlassian Microsoft 365 KnowBe4

Leak Screenshot:

Leak Screenshot