Back

bulbagarden.net Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The telemetry indicates a significant exposure of client data, with 3,929 historical data breaches and 564 active infostealer logs detected over the reporting period. The majority of these events, 87.4%, are attributed to historical data breaches, while 12.6% are active infostealer logs. The timeline shows a notable increase in client-related events from March 2026 onwards, peaking in April 2026 with 841 client events. Malware families such as Redline, Acreed, and LummaC2 are prevalent, suggesting a high risk of credential harvesting and further compromise. Given the high volume of data breaches and active infostealer activity targeting client data, this exposure presents a critical risk. The prevalence of infostealer malware, particularly Redline and Acreed, indicates a direct threat to user credentials and sensitive information. Remediation efforts should focus on enhancing data security measures, implementing robust credential protection, and actively monitoring for and mitigating infostealer activity. The primary affected entities are clients, with a substantial number of events linked to them, and a smaller but still significant number of employee-related events.

Total Events

4,493
credential exposure events

Employee Affected Events

112
account email domain = bulbagarden.net

Client Affected Events

4,381
service target = bulbagarden.net

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
1,2008004000
peak month 1,145
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events564
Share13%
Data breaches
Events3,929
Share87%
Infostealer logs (13%)
564events
Data breaches (87%)
3,929events

112 compromised employee accounts pose an infrastructure risk, while 4,381 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Windows Defender6
Windows Defender.1

Malware Families Distribution

Distribution of Active Stealer Strains

Redline107
Acreed87
LummaC284
Rhadamanthys65
Vidar33
RisePro17
StealC7
Millenium7
Raccoon4

Top Login URLs

Top exposed services found in the event results

  1. 1https://bulbapedia.bulbagarden.net/w/index.php559
  2. 2bulbapedia.bulbagarden.net/w/index.php473
  3. 3https://bulbapedia.bulbagarden.net470
  4. 4bulbapedia.bulbagarden.net441
  5. 5https://bulbapedia.bulbagarden.net/wiki/Special:CreateAccount128
  6. 6http://bulbapedia.bulbagarden.net/w/index.php115
  7. 7https://forums.bulbagarden.net/index.php94
  8. 8bulbapedia.bulbagarden.net/wiki/Special:CreateAccount91
  9. 9bulbagarden.net80
  10. 10https://forums.bulbagarden.net79

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

United States
Events69
Brazil
Events61
Canada
Events54
Australia
Events39
India
Events32
Colombia
Events15
United Kingdom
Events15
Singapore
Events13

Country Breakdown

  1. 1United States69
  2. 2Brazil61
  3. 3Canada54
  4. 4Australia39
  5. 5India32
  6. 6Colombia15
  7. 7United Kingdom15
  8. 8Singapore13

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

Pulse Secure6

Operating System Distribution

Distribution of compromised endpoint builds

Windows 11102
Windows 10 Enterprise x6428
Windows 1027
Windows 11 (Build 26200) (64 Bit)26
Windows 10 22H2 build 19045 (64 Bit)24

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
3,924
Combolist pools
5
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.