Back

shop-pro.jp Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The domain shop-pro.jp has experienced a significant number of events, with 30,525 historical data breaches and 6,611 active infostealer logs recorded over the past year. The majority of these events, 82.2%, are attributed to historical data breaches, while 17.8% are linked to active infostealer activity. Employee exposure was minimal until March 2026, when it rose to 15, and continued to increase to 58 in April 2026, suggesting a recent surge in compromised employee credentials. Client exposure is consistently high throughout the period, indicating a broad impact on users. The high volume of data breaches and infostealer activity, coupled with the recent increase in employee compromise, elevates the risk for shop-pro.jp. The prevalence of infostealer malware families like Vidar, LummaC2, and Redline suggests a focus on credential harvesting. Remediation efforts should prioritize securing customer data, investigating the root cause of the historical data breaches, and implementing robust measures to prevent further credential compromise and infostealer infections, particularly focusing on the recent spike in employee exposure.

Total Events

37,136
credential exposure events

Employee Affected Events

107
account email domain = shop-pro.jp

Client Affected Events

37,029
service target = shop-pro.jp

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
10,0006,6673,3330
peak month 9,632
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events6,611
Share18%
Data breaches
Events30,525
Share82%
Infostealer logs (18%)
6,611events
Data breaches (82%)
30,525events

107 compromised employee accounts pose an infrastructure risk, while 37,029 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Windows Defender789
Windows Defender ウイルスバスター クラウド93
Windows Defender ESET Security48
Windows Defender セキュリティエージェント ノートン 36036
Windows Defender McAfee20
Windows Defender ノートン 36010
Unknown10
Trend Micro8
Windows Defender セキュリティエージェント5

Malware Families Distribution

Distribution of Active Stealer Strains

Vidar725
LummaC2694
Redline679
Rhadamanthys584
Acreed363
Raccoon78
Remus59
Millenium56
RisePro41

Top Login URLs

Top exposed services found in the event results

  1. 1https://members.shop-pro.jp/3,777
  2. 2members.shop-pro.jp/2,330
  3. 3https://secure.shop-pro.jp/2,293
  4. 4secure.shop-pro.jp/1,859
  5. 5https://members.shop-pro.jp1,728
  6. 6members.shop-pro.jp1,651
  7. 7https://secure.shop-pro.jp1,542
  8. 8secure.shop-pro.jp1,537
  9. 9https://admin.shop-pro.jp/821
  10. 10https://cart.shop-pro.jp/527

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

Japan
Events3,758
Taiwan
Events136
United States
Events59
Thailand
Events29
Vietnam
Events27
India
Events25
South Korea
Events19

Country Breakdown

  1. 1Japan3,758
  2. 2Taiwan136
  3. 3United States59
  4. 4Hong Kong SAR China45
  5. 5Thailand29
  6. 6Vietnam27
  7. 7India25
  8. 8South Korea19

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

-
Total

Operating System Distribution

Distribution of compromised endpoint builds

Windows 11 Pro634
Windows 11521
Windows 11 24H2 build 26100 (64 Bit)274
Windows 10 22H2 build 19045 (64 Bit)259
Windows 10 Enterprise x64238

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
30,511
Combolist pools
14
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.