Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo univ-rennes.fr

Group: funksec

Discovered by ransomware.live: 2025-03-08

Estimated attack date: 2025-03-08

Country: FR

Description:

[AI generated] Univ-rennes.fr is likely associated with the University of Rennes, a renowned public research university located in Rennes, France. Offering a wide range of studies, it is divided into two main sectors: University of Rennes 1, focusing on science, technology, medicine, philosophy, law, management, and economics, and University of Rennes 2, emphasizing arts, literature, languages, communication, human and social sciences.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 132

Third Party Employee Credentials: 13

External Attack Surface: 18

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • registrar nameshield.net
  • domaines listes.univ-rennes1.fr
  • communication univ-rennes.fr
  • domaines listes.univ-rennes.fr
MX Records
  • mxc.relay.renater.fr.
  • mxd.relay.renater.fr.
  • mxa.relay.renater.fr.
  • mxb.relay.renater.fr.
TXT Records
  • MS=ms90901376
  • v=spf1 mx ip4:129.20.0.0/16 include:spf.partage.renater.fr include:spf-int.univ-rennes2.fr include:spf.medtra.fr ~all
  • google-site-verification=kevqW3uslGy4F7QTcfFHLoB_dSEHykHJfB3WOfebAWM
  • google-site-verification=alEzkIdntJHwU4fj8DWpeoK1UIHNvj30UDGgBD4jc5M
  • adobe-idp-site-verification=841286ab55a7bdbc0ff6392badf0471fb0cc2609565aeb5f8b9765d4e77fd2ee
Cloud / SaaS Services Detected
Adobe Microsoft 365

Leak Screenshot:

Leak Screenshot