Back

skyrock.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The domain skyrock.com has experienced a significant exposure event, with over 160,000 historical data breaches and 16,000 active infostealer logs detected within the reporting period. The majority of these events are linked to "Combolist sources" within leak repositories, suggesting compromised credentials. The timeline indicates a surge in client-related events in August 2025 and a notable increase in employee-related events in September 2025 and February 2026, potentially indicating targeted attacks or widespread credential stuffing campaigns. The high volume of data breaches and infostealer activity, coupled with a risk score of 100, indicates a critical exposure. The prevalence of malware families like Redline, LummaC2, and Acreed, commonly used for credential theft, further elevates the risk. Remediation efforts should focus on immediate credential resets for all affected employees and clients, enhanced monitoring for suspicious login activity, and a thorough review of access controls and security configurations for the skyrock.com domain and its associated services.

Total Events

176,981
credential exposure events

Employee Affected Events

1,937
account email domain = skyrock.com

Client Affected Events

175,044
service target = skyrock.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
50,00033,33316,6670
peak month 48,521
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events16,645
Share9%
Data breaches
Events160,336
Share91%
Infostealer logs (9%)
16,645events
Data breaches (91%)
160,336events

1,937 compromised employee accounts pose an infrastructure risk, while 175,044 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Windows Defender414
Windows Defender Seqrite Endpoint Protection21
Windows Defender.19
Avast Antivirus10
Windows Defender ESET Security10
Windows Defender McAfee Anti-Virus and Anti-Spyware8
Windows Defender [ON]7
Windows Defender Quick Heal Total Security5
Windows Defender Avast Antivirus.4

Malware Families Distribution

Distribution of Active Stealer Strains

Redline2,447
LummaC22,437
Acreed1,911
Rhadamanthys1,509
Vidar887
Remus294
RisePro272
Millenium251
StealC166

Top Login URLs

Top exposed services found in the event results

  1. 1skyrock.com20,281
  2. 2https://skyrock.com14,359
  3. 3https://www.skyrock.com13,254
  4. 4https://www.skyrock.com/subscribe/10,432
  5. 5www.skyrock.com8,907
  6. 6skyrock.com/subscribe/7,259
  7. 7https://www.skyrock.com/5,829
  8. 8skyrock.com/5,724
  9. 9www.skyrock.com/subscribe/4,903
  10. 10https://skyrock.com/4,468

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

France
Events3,753
India
Events1,582
Algeria
Events599
Pakistan
Events505
Morocco
Events398
Belgium
Events318
Bangladesh
Events277

Country Breakdown

  1. 1France3,753
  2. 2India1,582
  3. 3Algeria599
  4. 4Pakistan505
  5. 5Morocco398
  6. 6Belgium318
  7. 7Bangladesh277
  8. 8Côte d’Ivoire199

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

Citrix2
Intranet1

Operating System Distribution

Distribution of compromised endpoint builds

Windows 111,834
Windows 10 Enterprise x641,101
Windows 11 24H2 build 26100 (64 Bit)824
Windows 10592
Windows 10 22H2 build 19045 (64 Bit)512

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
159,586
Combolist pools
750
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.