tu-ilmenau.de
tu-ilmenau.de
Group: lockbit3
Discovered by ransomware.live: 2024-05-07
Estimated attack date: 2024-03-07
Country:
Description:
Eine moderne, zukunftsfähige Universität benötigt einen internationalen Campus mit einem weltoffenen Umfeld, in dem Menschen in ihrer Vielfalt akzeptiert werden und Grundrechte sowie Wissenschaftsfreiheit nicht in Frage gestellt werden.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 67
Compromised Users: 859
Third Party Employee Credentials: 100
External Attack Surface: 36
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- a2221.mx.srv.dfn.de.
- mail-router1.rz.tu-ilmenau.de.
- mail-router2.rz.tu-ilmenau.de.
- b2221.mx.srv.dfn.de.
- mail.tu-ilmenau.de.
- c2221.mx.srv.dfn.de.
TXT Records
- MS=ms53291016
- google-site-verification=G-Jxch177DdGmTe-xe9qxoWlsJTamlIMaoGhAfm3W-c
- adobe-idp-site-verification=7d871a98ab167d376db08c29f1a70063739f85f3a970df38e77380cedabb569d
- cisco-ci-domain-verification=74d908dff728ba14a7326912a0ef7dcb58fd87c4ac2804552547420913f66a29
- v=spf1 ip4:141.24.0.0/16 ip6:2001:638:904::/48 mx include:gbv.de -all
Cloud / SaaS Services Detected
Adobe
Microsoft 365
Cisco
Leak Screenshot:
