Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

lantro.com

lantro.com

Group Devman
Discovered 2025-05-31 17:16 UTC
Est. attack date 2025-05-31
Country JP

Description:

1.1 million USD

Infostealer activity detected by HudsonRock

Compromised Employees: 2

Compromised Users: 0

Third Party Employee Credentials: 12


External Attack Surface: 3


Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • trustandsafetysupport.aws.com
  • c39e26fc2f5fc5e715dc5e7a324e567a7e1b6f7ed57dac33785af4ba6102a124lantro.com.whoisproxy.org
  • c39e26fc2f5fc5e715dc5e7a324e567afa3bd19df9674a01ef7c96703ad3ef12lantro.com.whoisproxy.org
  • c39e26fc2f5fc5e715dc5e7a324e567a8b49b4a434e8b45f9b9b4de4d11b6384lantro.com.whoisproxy.org
  • c39e26fc2f5fc5e715dc5e7a324e567a9b7a760cd0b3867fb6d140080edb521blantro.com.whoisproxy.org
MX Records
  • lantro-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • v=spf1 include:spf.protection.outlook.com include:amazonses.com -all
Cloud / SaaS Services Detected
Amazon SES/WorkMail