Back

musica.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The domain musica.com exhibits a high-risk score of 89, primarily driven by a significant volume of historical data breaches (5392 events) and active infostealer logs (671 events) over the past year. The data suggests a substantial exposure affecting 5555 clients and 508 employees. Malware families like Redline, LummaC2, and Acreed are frequently observed, indicating ongoing credential harvesting and potential unauthorized access. The majority of data exposure originates from combolist sources, with a notable presence of targeted services related to "letras.asp" and login pages, suggesting a focus on user credentials. Geographically, the exposure is concentrated in Latin American countries, including Mexico, Colombia, and Argentina, with a smaller presence in the United States.

Total Events

6,063
credential exposure events

Employee Affected Events

508
account email domain = musica.com

Client Affected Events

5,555
service target = musica.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
2,0001,3336670
peak month 1,546
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events671
Share11%
Data breaches
Events5,392
Share89%
Infostealer logs (11%)
671events
Data breaches (89%)
5,392events

508 compromised employee accounts pose an infrastructure risk, while 5,555 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Windows Defender2
Avast2

Malware Families Distribution

Distribution of Active Stealer Strains

Redline197
LummaC297
Acreed50
Vidar23
Rhadamanthys21
RisePro19
StealC10
Blank Grabber3
Raccoon2

Top Login URLs

Top exposed services found in the event results

  1. 1https://www.musica.com/letras.asp1,212
  2. 2musica.com/letras.asp873
  3. 3www.musica.com/letras.asp683
  4. 4musica.com629
  5. 5https://musica.com411
  6. 6https://www.musica.com310
  7. 7https://musica.com/letras.asp271
  8. 8www.musica.com200
  9. 9https://www.musica.com/login/login.asp142
  10. 10https://www.musica.com/120

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

Argentina
Events99
Mexico
Events63
Colombia
Events58
United States
Events47
Peru
Events21
Ecuador
Events18
Brazil
Events17

Country Breakdown

  1. 1Argentina99
  2. 2Mexico63
  3. 3Colombia58
  4. 4United States47
  5. 5Peru21
  6. 6Ecuador18
  7. 7El Salvador17
  8. 8Brazil17

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

WordPress9

Operating System Distribution

Distribution of compromised endpoint builds

Windows 1188
Windows 10 Enterprise x6477
Windows 10 Home x6438
Windows 10 Pro (10.0.19045) x6436
Windows 10 Pro x6430

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
5,302
Combolist pools
90
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.