Back

jmsmucker.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The domain jmsmucker.com exhibits a high-risk profile due to a significant volume of historical data breaches (40,933 events) and active infostealer logs (1,783 events) over the observed period. The majority of these events are linked to employee data (42,145 events), with a smaller but notable number of client-related incidents (571 events). The prevalent malware family is Redline (99.3%), commonly associated with credential theft. The timeline shows a surge in employee-related events in September 2025 and January 2026, coinciding with periods of increased client data exposure. The data suggests a widespread compromise, with a focus on credential harvesting and data exfiltration targeting employee and client information. Given the high number of data breaches and the prevalence of infostealer activity, particularly Redline malware, this exposure presents a critical risk. The primary remediation focus should be on immediate incident response to contain active infostealer infections, followed by a comprehensive review of security controls to prevent future data breaches. This includes strengthening authentication mechanisms, particularly for services like "sts.jmsmucker.com/adfs/ls/", and enhancing endpoint security to detect and mitigate infostealer malware. Prioritizing the protection of employee and client data is paramount.

Total Events

42,716
credential exposure events

Employee Affected Events

42,145
account email domain = jmsmucker.com

Client Affected Events

571
service target = jmsmucker.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
10,0006,6673,3330
peak month 9,934
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events1,783
Share4%
Data breaches
Events40,933
Share96%
Infostealer logs (4%)
1,783events
Data breaches (96%)
40,933events

42,145 compromised employee accounts pose an infrastructure risk, while 571 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Bitdefender2
Avira1
Kaspersky1

Malware Families Distribution

Distribution of Active Stealer Strains

Redline1,771
Acreed4
Remus4
Aurora2
Rhadamanthys1
LummaC21

Top Login URLs

Top exposed services found in the event results

  1. 1jmsmucker.com540
  2. 2https://sts.jmsmucker.com/adfs/ls/13
  3. 3https://sts.jmsmucker.com7
  4. 4sts.jmsmucker.com6
  5. 5sts.jmsmucker.com/adfs/ls/6
  6. 6https://sts.jmsmucker.com/5
  7. 7https://sts.jmsmucker.com/adfs/ls4
  8. 8profile.jmsmucker.com3
  9. 9https://profile.jmsmucker.com3
  10. 10sts.jmsmucker.com/3

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

Netherlands
Events422
United States
Events418
Germany
Events380
Denmark
Events179
United Kingdom
Events55
France
Events35
Belgium
Events29

Country Breakdown

  1. 1Netherlands422
  2. 2United States418
  3. 3Germany380
  4. 4Denmark179
  5. 5United Kingdom55
  6. 6Luxembourg35
  7. 7France35
  8. 8Belgium29

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

Microsoft51
Citrix50
Pulse Secure24
Git21
FortiNet VPN21
Cisco (AnyConnect)17
Auth05

Operating System Distribution

Distribution of compromised endpoint builds

Windows 10 Home x32145
Windows 8.1 x32138
Windows 7 x32136
Windows Server 2003 x32136
Windows Server 2008 x32130

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
34,597
Combolist pools
6,336
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.