unisi.it
unisi.it
Group: lockbit3
Discovered by ransomware.live: 2024-05-18
Estimated attack date: 2024-05-03
Country:
Description:
The University of Siena (Università degli Studi di Siena, abbreviation: UNISI) in Siena, Tuscany, is one of the oldest and first publicly funded universities in Italy. 514 gigabytes of files were stolen, including: Documents with budgets (expenses b...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 23
Compromised Users: 691
Third Party Employee Credentials: 281
External Attack Surface: 13
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- ALT4.ASPMX.L.GOOGLE.COM.
- ALT2.ASPMX.L.GOOGLE.COM.
- ASPMX.L.GOOGLE.COM.
- ALT3.ASPMX.L.GOOGLE.COM.
- ALT1.ASPMX.L.GOOGLE.COM.
TXT Records
- abuseipdb-verification=vyNKRuzm
- google-site-verification=e10pkUq0mPzase5mwA5Sj7od263eS5kJdCJFHfRM8t4
- HARICA-RhgpaZL4B47HMRzccMp
- DirectFedAuthUrl=https://shibboleth.unisi.it/idp/profile/SAML2/POST/SSO
- v=spf1 ip4:193.205.4.0/22 ip4:192.167.112.0/20 ip4:51.255.24.214 ip4:54.76.207.72 ip4:77.81.239.53 ip4:45.79.250.30 " "ip4:162.55.169.250 ip4:62.149.156.87 ip4:216.147.218.8/30 ip4:95.172.90.0/24 ip4:13.81.24.216 include:spf.protection.outlook.com include:_spf.google.com include:_spf.cineca.it -all
- MS=ms24679190
- brevo-code:dec344b659b612f05643616d55a00d88
- HARICA-iQ2c7QNWYgJKi892pI6
- cisco-ci-domain-verification=fb01a5a7c3e8635cd65894705408ec1f8c0f01ff80d582c44371b72c7b6f75a
- google-site-verification=6umKDh8RFbluR4gHznMoAM_VeXmCGusAHgBS3aQESUs
Cloud / SaaS Services Detected
Microsoft 365
Cisco
Leak Screenshot:
