Back

uploadboy.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The domain uploadboy.com exhibits a high-risk score of 93, primarily driven by a significant volume of historical data breaches (87%) and active infostealer logs (13%) observed between July 2025 and June 2026. A substantial number of client accounts (45,474) and employee accounts (71) have been exposed, with a notable increase in employee exposure during March and April 2026. The prevalent malware families associated with these events include Redline, LummaC2, and Rhadamanthys, all known for credential theft and data exfiltration. The data suggests a strong correlation with "Combolist sources" within leak repositories, indicating compromised credentials are a primary vector. Given the high volume of client and employee data breaches, coupled with the prevalence of infostealer malware targeting credentials, the priority should be on immediate incident response and credential reset for all affected users. Focus remediation efforts on strengthening authentication mechanisms, enhancing endpoint security to detect and block infostealer activity, and conducting thorough investigations into the root cause of the data breaches and credential stuffing attacks originating from "Combolist sources." The geographic distribution shows a notable concentration of activity originating from Iran, which may warrant specific monitoring or blocking rules.

Total Events

45,545
credential exposure events

Employee Affected Events

71
account email domain = uploadboy.com

Client Affected Events

45,474
service target = uploadboy.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
12,0008,0004,0000
peak month 10,207
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events5,903
Share13%
Data breaches
Events39,642
Share87%
Infostealer logs (13%)
5,903events
Data breaches (87%)
39,642events

71 compromised employee accounts pose an infrastructure risk, while 45,474 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Windows Defender72
None2
Windows Defender.1

Malware Families Distribution

Distribution of Active Stealer Strains

Redline1,343
LummaC2970
Rhadamanthys574
RisePro306
Vidar275
Acreed261
StealC234
Raccoon37
Millenium33

Top Login URLs

Top exposed services found in the event results

  1. 1https://uploadboy.com7,195
  2. 2uploadboy.com6,949
  3. 3https://uploadboy.com/3,718
  4. 4uploadboy.com/3,142
  5. 5https://uploadboy.com/register.html2,226
  6. 6uploadboy.com/register.html1,647
  7. 7http://uploadboy.com/1,464
  8. 8http://uploadboy.com822
  9. 9http://uploadboy.com/register.html483
  10. 10uploadboy.com/login.html400

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

Iran
Events2,016
United States
Events184
Germany
Events171
Egypt
Events109
Indonesia
Events102
United Kingdom
Events100
Türkiye
Events99
France
Events83

Country Breakdown

  1. 1Iran2,016
  2. 2United States184
  3. 3Germany171
  4. 4Egypt109
  5. 5Indonesia102
  6. 6United Kingdom100
  7. 7Türkiye99
  8. 8France83

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

-
Total

Operating System Distribution

Distribution of compromised endpoint builds

Windows 10 Enterprise x64659
Windows 10 22H2 build 19045 (64 Bit)291
Windows 11285
Windows 10 Pro278
Windows 10 Pro (10.0.19045) x64247

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
39,632
Combolist pools
10
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.