How breaches are classified
Breaches are grouped into four categories that include the following datapoints:
- Low: Email addresses, IP addresses, names, website activity, gender, geographic region, and a myriad of other details.
- Medium: Dates of birth, phone numbers, physical addresses, partial credit card data, bank account numbers, IMEI numbers, mnemonic phrases, recovery email addresses, credit card CVVs, address book contacts, and audio recordings.
- High: Usernames, security questions and answers, banking PINs, PINs, private messages, government-issued IDs, email messages, credit card numbers, passport numbers, chat logs, SMS messages, password hints, cryptocurrency wallet hashes, and social security numbers.
- Critical: Passwords, authentication tokens, historical passwords, and biometric data.
How to view data found in the identity breaches module
There are two ways to view the data found in the identity breaches module by:
- Email address
Viewing by breach
When viewing by breach, you can see a list of all the identity breaches that included at least one of your organization's email addresses.
You can also archive a breach if you believe it presents no risk by clicking the "Archive breaches" button.
When you click on an individual breach, we'll give you an overview of the breach which includes:
- Breached company name
- Breach details
- Date of breach
- Date published
- Notification sent
- Breach status
- Number of employees involved
- Total breach size
- Data exposed
Viewing by email address
When viewing by email address, you are presented with a list of all email addresses that have been included in any breach (excluding those you have explicitly ignored).
Selecting an email address from the list shows you the details of all the breaches that email address was exposed in.
If the breach contains email addresses that are not relevant (such as ex-employees, or non-existent email addresses) click the "Ignore email addresses" button, and follow the prompts and they will no longer appear in this or any other breach.
To notify exposed employees, click the "notify employees" button and follow these steps:
Select the employee(s) that you want to notify about the breach:
- To select an individual employee click the square next to their account; or
- To select all accounts, click the "Select all unnotified accounts"
Once you've selected the accounts you wish to notify, click the "Next" button in the lower right-hand corner of the screen. You'll be taken to the "Notify Employees" screen which highlights who will be receiving the email as well as what message they will receive.
If you would like to change the subject line or message, use the provided input boxes and then click the "Send Email" button.