Back

delicious.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The domain delicious.com has experienced a high volume of data breach events, totaling 7,707 incidents, which constitute 86.3% of all observed events. Additionally, there were 1,225 infostealer events, representing 13.7% of the total. The timeline indicates a significant spike in client-related events during March 2026, with 2,256 occurrences, and a notable number of employee-related events in September 2025 (40) and February 2026 (24). The majority of data breach sources are identified as "Combolist sources" (99.6%), suggesting credential stuffing or account takeover attempts. Malware families associated with these events include LummaC2, Redline, and Rhadamanthys, all known for their credential-stealing capabilities. The targeted services are primarily variations of the delicious.com domain and its login pages, indicating a direct focus on this platform. Geographically, India, Bangladesh, and the United States show the highest number of associated events. The overall risk score of 82 highlights a critical exposure.

Total Events

8,932
credential exposure events

Employee Affected Events

99
account email domain = delicious.com

Client Affected Events

8,833
service target = delicious.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
2,5001,6678330
peak month 2,256
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events1,225
Share14%
Data breaches
Events7,707
Share86%
Infostealer logs (14%)
1,225events
Data breaches (86%)
7,707events

99 compromised employee accounts pose an infrastructure risk, while 8,833 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Windows Defender28
Unknown3

Malware Families Distribution

Distribution of Active Stealer Strains

LummaC2169
Redline147
Rhadamanthys103
Vidar67
Acreed58
Remus47
Millenium20
Raccoon18
StealC13

Top Login URLs

Top exposed services found in the event results

  1. 1delicious.com1,589
  2. 2https://delicious.com1,523
  3. 3https://delicious.com/1,435
  4. 4delicious.com/1,014
  5. 5http://delicious.com/300
  6. 6delicious.com/login220
  7. 7https://delicious.com/login168
  8. 8http://delicious.com/login137
  9. 9http://delicious.com/join124
  10. 10http://delicious.com118

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

India
Events92
Bangladesh
Events54
United States
Events52
Philippines
Events48
Pakistan
Events43
Spain
Events42
Brazil
Events34
Japan
Events29

Country Breakdown

  1. 1India92
  2. 2Bangladesh54
  3. 3United States52
  4. 4Philippines48
  5. 5Pakistan43
  6. 6Spain42
  7. 7Brazil34
  8. 8Japan29

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

WordPress1

Operating System Distribution

Distribution of compromised endpoint builds

Windows 1193
Windows 10 22H2 build 19045 (64 Bit)75
Windows 10 Enterprise x6467
Windows 11 24H2 build 26100 (64 Bit)46
Windows 10 Pro37

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
7,679
Combolist pools
28
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.