Back

sport.es Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The domain sport.es has experienced a significant exposure event with a risk score of 82, primarily driven by 6,892 historical data breaches and 750 active infostealer logs. The majority of these events, 90.2%, are attributed to historical data breaches, with a notable 9.8% stemming from active infostealer activity. The timeline indicates a surge in client-related events from March to May 2026, with employee-related events also increasing during April 2026. Malware families such as Redline, Acreed, and LummaC2 are prevalent, suggesting potential credential harvesting and system compromise. This exposure poses a high risk due to the sheer volume of data breaches and the active presence of infostealers, impacting 7,536 clients and 106 employees. The prevalence of combolist sources (99.9%) within leak repositories indicates a high likelihood of credential stuffing attacks against users. Remediation should focus on immediate credential resets for affected employees and clients, enhanced monitoring for suspicious login activity, and a review of authentication mechanisms. Given the nature of the domain and the observed data, the closest industry sector is Retail & E-commerce.

Total Events

7,642
credential exposure events

Employee Affected Events

106
account email domain = sport.es

Client Affected Events

7,536
service target = sport.es

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
2,5001,6678330
peak month 2,300
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events750
Share10%
Data breaches
Events6,892
Share90%
Infostealer logs (10%)
750events
Data breaches (90%)
6,892events

106 compromised employee accounts pose an infrastructure risk, while 7,536 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

None1

Malware Families Distribution

Distribution of Active Stealer Strains

Redline170
Acreed87
LummaC286
Vidar79
Rhadamanthys37
StealC22
RisePro19
Millenium4
Raccoon2

Top Login URLs

Top exposed services found in the event results

  1. 1sport.es773
  2. 2https://sport.es476
  3. 3https://www.sport.es413
  4. 4www.sport.es386
  5. 5https://www.sport.es/susp/register/create_user.html333
  6. 6sport.es/susp/register/create_user.html260
  7. 7https://www.sport.es/208
  8. 8https://www.sport.es/susp/register/login.html193
  9. 9www.sport.es/susp/register/create_user.html159
  10. 10sport.es/susp/register/login.html139

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

Spain
Events252
Ecuador
Events70
Argentina
Events29
United States
Events19
Venezuela
Events19
Cuba
Events16
Chile
Events14
Mexico
Events14

Country Breakdown

  1. 1Spain252
  2. 2Ecuador70
  3. 3Argentina29
  4. 4United States19
  5. 5Venezuela19
  6. 6Cuba16
  7. 7Chile14
  8. 8Mexico14

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

WordPress126

Operating System Distribution

Distribution of compromised endpoint builds

Windows 10 Pro98
Windows 1167
Windows 10 Enterprise x6454
Windows 1053
Windows 10 Home x6446

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
6,883
Combolist pools
9
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.