Back

fmc.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The telemetry indicates a significant exposure event impacting fmc.com, with 9097 historical data breaches and 48 active infostealer logs observed over the period from July 2025 to June 2026. The majority of events are classified as historical data breaches, with a substantial number of employee credentials (8393) and client credentials (752) compromised. Malware families such as StealC, Redline, and LummaC2 were detected, suggesting active credential harvesting and potential further compromise. The data also points to compromised credentials originating from combolist sources and database dumps, indicating a broad compromise of user data. Given the high volume of historical data breaches and the presence of active infostealer logs, this situation presents a critical risk. The primary focus for remediation should be on immediate credential rotation for all affected employees and clients, enhanced monitoring for suspicious activity, and a thorough investigation into the root cause of the data breaches and infostealer activity. Prioritizing the security of services like fmc.com, guest.fmc.com, and ffa.fmc.com is essential, as these appear to be targeted. The geographical distribution suggests a global impact, with a notable concentration in Argentina, though the United States is also listed.

Total Events

9,145
credential exposure events

Employee Affected Events

8,393
account email domain = fmc.com

Client Affected Events

752
service target = fmc.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
8,0005,3332,6670
peak month 6,434
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events48
Share1%
Data breaches
Events9,097
Share100%
Infostealer logs (1%)
48events
Data breaches (100%)
9,097events

8,393 compromised employee accounts pose an infrastructure risk, while 752 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

No Data Available

Malware Families Distribution

Distribution of Active Stealer Strains

StealC12
Redline6
LummaC24
Raccoon4
Vidar4
Acreed3
Rhadamanthys1

Top Login URLs

Top exposed services found in the event results

  1. 1fmc.com312
  2. 2https://guest.fmc.com/25
  3. 3guest.fmc.com/15
  4. 4ffa.fmc.com15
  5. 5https://auth.fmc.com13
  6. 6android://u_v9fWDSn7DOwXeHzz9_pP59xmrqMpPzzT_hLkNMv9BKa5J9YyvNVuIsIHdfbQX-xTib2T46itqJzIguxasRbg==@com.fmc.app/13
  7. 7guest.fmc.com12
  8. 8https://guest.fmc.com12
  9. 9https://kongsijempolan.fmc.com/12
  10. 10https://ffa.fmc.com10

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

Argentina
Events14
United Arab Emirates
Events7
Indonesia
Events4
Romania
Events2
Pakistan
Events2
Rwanda
Events2
Hungary
Events1
United States
Events1

Country Breakdown

  1. 1Argentina14
  2. 2United Arab Emirates7
  3. 3Indonesia4
  4. 4Romania2
  5. 5Pakistan2
  6. 6Rwanda2
  7. 7Hungary1
  8. 8United States1

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

Microsoft54
Citrix23
Intranet8
Pulse Secure4
WordPress2

Operating System Distribution

Distribution of compromised endpoint builds

Windows 10 Home12
Windows 10 Pro9
Windows 115
Windows 10 Enterprise x643
Windows 10 Pro x643

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
1,427
Combolist pools
7,670
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.