Your subdomain is wide open.
webmail.volkl.com points to an endpoint your team abandoned — which means anyone can claim it and serve their own content under Völkl's trusted domain. Brutor found it and claimed it first, purely to warn you. The next person to discover a hole like this may not be so friendly.
A dangling DNS record, in one sentence
A dangling DNS record is a subdomain that still points to a service, host, or bucket you no longer control — meaning anyone who claims that leftover resource instantly inherits your domain's trust.
What an attacker could do with this
Subdomain takeover
Host any content — phishing pages, malware, scams — under your trusted name.
Credential theft
Spin up a fake login that looks 100% legitimate because it really is your domain.
Cookie & session hijacking
Capture cookies scoped to your parent domain and ride active user sessions.
Brand & SEO damage
Erode customer trust and let search engines index hostile content as yours.
You can close this in minutes
Locate the record
Find the CNAME / A record for webmail.volkl.com in your DNS provider.
Remove or re-point it
Delete the record, or repoint it to a resource you actively own and control.
Audit the rest
This is rarely the only one. Scan every subdomain for the same exposure.
Don't guess where the next one is. Know.
Brutor is AI-driven web security that continuously hunts for dangling records, subdomain takeovers, and exposed endpoints across your entire surface — before anyone else finds them.
To be clear: Brutor is on your side. We didn't break in, alter your systems, or take any data — we simply claimed an endpoint that was sitting wide open and put this warning here instead. We got to it first; an attacker easily could have. The risk is real and live right now, so we'd much rather you close it today than learn about it from a customer tomorrow.