Back

cliponyu.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The domain cliponyu.com has been associated with a significant number of historical data breaches, totaling 2,346 events, and 276 active infostealer logs. The majority of these events, 89.5%, are attributed to data breaches, with the remaining 10.5% being active infostealer logs. The timeline indicates a surge in client-related events during March and April 2026, with 741 and 529 instances respectively. Employee-related events, while fewer, also saw a peak of 8 in April 2026. Malware families such as LummaC2, Redline, and Rhadamanthys are frequently observed in connection with this domain. The primary targeted services are related to the domain's web presence, including "http://www.cliponyu.com/liveroom/studio/index" and "cliponyu.com/liveroom/studio/index". The data indicates a strong concentration of activity originating from Indonesia, accounting for 135 events.

Total Events

2,622
credential exposure events

Employee Affected Events

25
account email domain = cliponyu.com

Client Affected Events

2,597
service target = cliponyu.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
8005332670
peak month 741
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events276
Share11%
Data breaches
Events2,346
Share90%
Infostealer logs (11%)
276events
Data breaches (90%)
2,346events

25 compromised employee accounts pose an infrastructure risk, while 2,597 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

No Data Available

Malware Families Distribution

Distribution of Active Stealer Strains

LummaC247
Redline28
Rhadamanthys27
Vidar25
Acreed9
RisePro8
StealC3

Top Login URLs

Top exposed services found in the event results

  1. 1http://www.cliponyu.com/liveroom/studio/index295
  2. 2cliponyu.com/liveroom/studio/index288
  3. 3cliponyu.com258
  4. 4http://www.cliponyu.com/register230
  5. 5https://cliponyu.com180
  6. 6www.cliponyu.com/liveroom/studio/index165
  7. 7https://www.cliponyu.com159
  8. 8https://www.cliponyu.com/liveroom/studio/index123
  9. 9cliponyu.com/register119
  10. 10www.cliponyu.com105

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

Indonesia
Events135
Egypt
Events2
India
Events2
Brazil
Events1
Thailand
Events1
France
Events1
Spain
Events1
Russia
Events1

Country Breakdown

  1. 1Indonesia135
  2. 2Egypt2
  3. 3India2
  4. 4Brazil1
  5. 5Thailand1
  6. 6France1
  7. 7Spain1
  8. 8Russia1

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

-
Total

Operating System Distribution

Distribution of compromised endpoint builds

Windows 11 Home Single Language61
Windows 10 22H2 build 19045 (64 Bit)14
Windows 10 Enterprise x6413
Windows 11 24H2 build 26100 (64 Bit)12
Windows 1111

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
2,345
Combolist pools
1
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.