Back

zoetis.com Domain Breach Exposure Report

Risk Score

High Risk

Massive event volume or critical assets compromised.

AI Findings Summary

Critical

The telemetry indicates a significant exposure of Zoetis employee and client data, with over 11,715 historical data breaches and 287 active infostealer events observed between July 2025 and June 2026. The majority of these events are classified as historical data breaches, with a notable surge in employee-related events in January 2026. The infostealer activity is primarily associated with malware families like Acreed, LummaC2, and Rhadamanthys, targeting services such as zoetis.com and its associated login and registration endpoints. The data originates predominantly from the United States and India. Given the high volume of data breaches and the presence of active infostealer logs, this exposure presents a critical risk. The prevalence of historical data breaches suggests a long-term compromise or a history of significant security incidents. The infostealer activity, targeting employee and client credentials, poses an immediate threat of further unauthorized access and potential financial or reputational damage. Remediation efforts should focus on comprehensive data breach investigation, credential hygiene, and enhanced monitoring of targeted services and associated infrastructure.

Total Events

12,002
credential exposure events

Employee Affected Events

10,507
account email domain = zoetis.com

Client Affected Events

1,495
service target = zoetis.com

Free Community Account

Stop stolen credentials from logging in

Own this domain? Create a free Lunar account to see full exposure data and evidence.

12-Month Events Timeline

Event volume by breach date, employee VS client

EmployeesClients
8,0005,3332,6670
peak month 7,853
Jul 25Sep 25Nov 25Jan 26Mar 26May 26Jun 26

Infostealers VS Data Breaches

Live stealer logs VS data breaches

Infostealer logs
Events287
Share2%
Data breaches
Events11,715
Share98%
Infostealer logs (2%)
287events
Data breaches (98%)
11,715events

10,507 compromised employee accounts pose an infrastructure risk, while 1,495 leaked client credentials create regulatory liability.

Antivirus Distribution

Security Tools on Infected Endpoints

Windows Defender2

Malware Families Distribution

Distribution of Active Stealer Strains

Acreed62
LummaC241
Rhadamanthys24
X-Files23
Redline19
Vidar11
StealC2
Raccoon2
Remus1

Top Login URLs

Top exposed services found in the event results

  1. 1zoetis.com396
  2. 2https://umx100.zoetis.com/widgetserver/login102
  3. 3https://umx100.zoetis.com/widgetserver/registration102
  4. 4https://umx100.zoetis.com79
  5. 5umx100.zoetis.com71
  6. 6https://shop.zoetis.com/zb2b/zoetis-us/en_US/USD/login66
  7. 7umx100.zoetis.com/widgetserver/login61
  8. 8umx100.zoetis.com/widgetserver/registration57
  9. 9shop.zoetis.com22
  10. 10shop.zoetis.com/zb2b/zoetis-us/en_US/USD/login21

Infostealer By Geography

Shows the distribution of Infostealer-related credential exposure events across different geographic regions. The location is determined by analyzing the metadata of the infected machines associated with each event.

United States
Events67
India
Events59
Brazil
Events14
Japan
Events6
Argentina
Events4
Vietnam
Events4
Colombia
Events3

Country Breakdown

  1. 1United States67
  2. 2India59
  3. 3Brazil14
  4. 4Japan6
  5. 5Côte d’Ivoire6
  6. 6Argentina4
  7. 7Vietnam4
  8. 8Colombia3

Services Classification Distribution

Blast radius - closer to core = more critical infrastructure, size = credential volume

Microsoft40
Jira (Atlassian)34
F518

Operating System Distribution

Distribution of compromised endpoint builds

Windows 1187
Windows 10 22H2 build 19045 (64 Bit)24
Windows 11 Pro (10.0.22631) x6413
Windows 11 Pro (10.0.26100) x649
Windows 10 Home x649

Leak Repository Classification

Where the exposed records currently reside

0
Named breaches
1,676
Combolist pools
10,039
Unattributed dumps

Disclaimer: This report includes AI-generated content. AI can make mistakes, so verify important findings independently before taking action.