Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo vitalitygroup.com

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2022-10-24

Country: GB

Description:

vitalitygroup.com

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 11

Third Party Employee Credentials: 11

External Attack Surface: 0


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusecomplaints markmonitor.com
  • whoisrequest markmonitor.com
MX Records
  • discovery-co-za.mail.protection.outlook.com.
TXT Records
  • google-site-verification=VdrRL6x0dW091-t3klomvxpylGjsSbdWMI33xh1Zx5g
  • 7SRAs1xuNpcICqpy8GeFAlSHQWAo1GuvQH0tY9BV6XUsQP/hbyrct877HXOwEPpKxb3vyUm4GGK16cAnXkNcQg==
  • knowbe4-site-verification=0a4795bbd5aa7f1617d694707039cc93
  • figma-domain-verification=2d3bb461c45284a6e6e0e53e97770af19b5eef3009d137c5cb10c7716c966753-1722007911
  • _8fhnirbyrstvph3eb4td3mfxwugifsh
  • have-i-been-pwned-verification=3e96fa83e922faa52ec0f74108f8ecfa
  • include:aspmx.pardot.com ip4:197.97.145.210 ip4:197.97.203.34 ip4:66.155.106.185 ip4:66.155.106.184 ip4:196.6.208.76 ip4:91.198.224.29 ip4:194.37.255.29 ip4:66.155.106.185 ~all\
  • docusign=5d1d0b9b-a4d3-49af-939b-cea03c3c5bb3
  • google-site-verification=TqkZokcdNDlgyxyJg3vj9oN5J33aPkzQ9byuYLc3uyE
  • apple-domain-verification=0XFnrT6s9uLH0Utn
  • MS=ms37811763
  • v=spf1 mx include:spf.protection.outlook.com include:_spf1.discovery.co.za ~all
  • aSlZlytnknlB9hzY0izIXBTBC2D+0Hh5fCgyAUebyoQ+5ZNttm+zDvYqREeEz9h8W8cf6br7W8/TmTOOVCc+Uw==
  • google-site-verification=Mk4BmuZ5oLCkR2NdN35hqqQcM2YkSFZ3i7Q8caafIR0
  • google-site-verification=tmzHNwKI6AVvM785cxVVuy6pVPB_evyIFxUo4NCgxjs
  • cloudhealth=fbe4f4fb-4cee-4ce2-ac49-537ff22018c8
  • amazonses:xKY5u0a8nufLnAA+Fi/evXkKtqjATylvJNMgrKPbf6s=
  • google-site-verification=0yCw0Rlan6Ll_D4uQgFXfp5cCXDY53utuNcICVd0GQk
  • dtm-domain-verification=99vyOO3OP4pUPi8QguFP0eHcExfGk90OmB0l_Rc3jO4
  • adobe-idp-site-verification=4e52f39c7eab8b10c05e85516494dcae861da96718ca68f136adeb5d85374656
  • pardot_210002_*=695c0e2309af12d4f064616fb59e8771f7adb3f163b2dd843dbc3b8ecac2ed1f
Cloud / SaaS Services Detected
Adobe Apple Amazon SES/WorkMail Microsoft 365 KnowBe4 DocuSign Have I Been Pwned

Leak Screenshot:

Leak Screenshot