Back

bongacams.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The telemetry indicates a significant exposure event impacting approximately 575,337 clients and 189 employees associated with bongacams.com. The primary drivers of this exposure are historical data breaches, accounting for over 480,000 events, and active infostealer logs, totaling nearly 95,000 events. Malware families such as Redline, LummaC2, and Rhadamanthys are prevalent, suggesting a focus on credential harvesting and potentially further compromise. The data suggests a broad geographical reach, with notable activity originating from Colombia, Egypt, and Brazil, among others. The majority of compromised systems are running Windows 10 and Windows 11 operating systems. Given the high volume of client data breaches and active infostealer activity, this exposure presents a critical risk. The prevalence of infostealers targeting credentials and the sheer scale of historical data breaches necessitate immediate investigation into the root cause and scope of these incidents. Remediation efforts should focus on securing client data, enhancing endpoint security to detect and prevent infostealer malware, and reviewing access controls for both client and employee accounts. The presence of "Combolist sources" in leak repositories further underscores the urgency of addressing credential compromise.

Total Events

575,526
credential exposure events

Employee Affected Events

189
account email domain = bongacams.com

Client Affected Events

575,337
service target = bongacams.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
150,000100,00050,0000
peak month 141,941
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events94,869
Share17%
Data breaches
Events480,657
Share84%
Infostealer logs (17%)
94,869events
Data breaches (84%)
480,657events

189 compromised employee accounts pose an infrastructure risk, while 575,337 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Windows Defender1,569
Windows Defender.575
Windows Defender McAfee.54
Windows Defender Avast Antivirus.36
Malwarebytes25
Avast Antivirus24
Avast21
McAfee18
Windows Defender 360 Total Security.17

Malware Families Distribution

Distribution of Active Stealer Strains

Redline18,748
LummaC213,981
Rhadamanthys10,258
Vidar8,747
Acreed5,079
RisePro2,585
StealC1,737
Blank Grabber832
Millenium650

Top Login URLs

Top exposed services found in the event results

  1. 1https://bongacams.com/24,547
  2. 2bongacams.com21,229
  3. 3https://bongacams.com20,605
  4. 4https://es.bongacams.com/18,630
  5. 5https://es.bongacams.com16,383
  6. 6es.bongacams.com16,298
  7. 7bongacams.com/13,868
  8. 8es.bongacams.com/10,880
  9. 9ar.bongacams.com7,674
  10. 10https://ar.bongacams.com/7,664

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

Colombia
Events3,444
Egypt
Events3,074
Brazil
Events2,593
India
Events2,548
United States
Events2,429
Romania
Events1,848
Bangladesh
Events1,812
Czechia
Events1,719

Country Breakdown

  1. 1Colombia3,444
  2. 2Egypt3,074
  3. 3Brazil2,593
  4. 4India2,548
  5. 5United States2,429
  6. 6Romania1,848
  7. 7Bangladesh1,812
  8. 8Czechia1,719

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

WordPress57

Operating System Distribution

Distribution of compromised endpoint builds

Windows 10 Enterprise x648,318
Windows 10 Pro4,647
Windows 114,646
Windows 10 22H2 build 19045 (64 Bit)4,133
Windows 11 24H2 build 26100 (64 Bit)3,785

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
480,360
Combolist pools
297
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.