Back

homedepot.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The telemetry indicates a significant exposure event impacting The Home Depot, with over 622,000 total events recorded between July 2025 and June 2026. The majority of these events, approximately 89%, are classified as historical data breaches, totaling over 556,000 incidents. Additionally, there are over 66,000 active infostealer logs, representing about 10.6% of the total events. The data suggests a substantial compromise affecting both employee and client credentials, with peaks in employee-related events in January 2026 and client-related events in March 2026. The primary malware families associated with these events are Redline, Rhadamanthys, and LummaC2, all known for credential theft. The telemetry also shows a high volume of data originating from combolist sources and database dumps, further suggesting widespread credential compromise.

Total Events

622,193
credential exposure events

Employee Affected Events

150,016
account email domain = homedepot.com

Client Affected Events

472,177
service target = homedepot.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
150,000100,00050,0000
peak month 125,874
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events66,101
Share11%
Data breaches
Events556,092
Share89%
Infostealer logs (11%)
66,101events
Data breaches (89%)
556,092events

150,016 compromised employee accounts pose an infrastructure risk, while 472,177 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Windows Defender1,578
Windows Defender.77
McAfee57
Windows Defender McAfee56
McAfee VirusScan49
Avast Antivirus28
Webroot SecureAnywhere23
Windows Defender McAfee VirusScan23
Windows Defender Norton Security20

Malware Families Distribution

Distribution of Active Stealer Strains

Redline10,373
Rhadamanthys9,410
LummaC28,795
Acreed5,510
Vidar3,051
X-Files1,539
Millenium837
RisePro585
StealC490

Top Login URLs

Top exposed services found in the event results

  1. 1homedepot.com40,346
  2. 2https://homedepot.com26,844
  3. 3https://www.homedepot.com25,918
  4. 4https://www.homedepot.com/auth/view/signin18,888
  5. 5www.homedepot.com17,483
  6. 6https://www.homedepot.com/15,863
  7. 7https://www.homedepot.com/auth/view/checkout/createaccount/diy14,953
  8. 8homedepot.com/auth/view/signin11,674
  9. 9https://secure2.homedepot.com11,381
  10. 10https://www.homedepot.com/auth/view/createaccount/diy11,233

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

United States
Events32,368
Canada
Events791
Mexico
Events778
Philippines
Events561
Pakistan
Events552
Puerto Rico
Events477
Netherlands
Events437
Germany
Events415

Country Breakdown

  1. 1United States32,368
  2. 2Canada791
  3. 3Mexico778
  4. 4Philippines561
  5. 5Pakistan552
  6. 6Puerto Rico477
  7. 7Netherlands437
  8. 8Germany415

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

Citrix173
Microsoft78
Cisco (AnyConnect)64
Git51
Pulse Secure29
FortiNet VPN14
Jira (Atlassian)14

Operating System Distribution

Distribution of compromised endpoint builds

Windows 117,036
Windows 11 24H2 build 26100 (64 Bit)5,311
Windows 10 Home x643,710
Windows 10 Enterprise x643,183
Windows 10 22H2 build 19045 (64 Bit)2,389

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
444,188
Combolist pools
111,904
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.