Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

VirtualExpo Group

www.virtual-expo.com

Group Qilin
Discovered 2026-03-20 13:20 UTC
Est. attack date 2026-03-20
Country FR

Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 92

Third Party Employee Credentials: 3


External Attack Surface: 11


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • e5b4aebca8457748c4918b3a2d60ff27-218974contact.gandi.net
  • abusesupport.gandi.net
MX Records
  • aspmx3.googlemail.com. Google Workspace
  • aspmx.l.google.com. Google Workspace
  • alt1.aspmx.l.google.com. Google Workspace
  • alt2.aspmx.l.google.com. Google Workspace
  • aspmx2.googlemail.com. Google Workspace
TXT Records
  • v=spf1 ip4:217.174.192.128/26 ip4:92.43.248.128/26 ip4:89.227.248.72/29 include:_spf.google.com include:_spf.salesforce.com include:mailgun.org -all
Cloud / SaaS Services Detected
Salesforce Mailgun

Leak Screenshot:

Leak Screenshot