ERM Leaked Credentials Table

The ERM Leaked Credentials table shows the security events and details about compromised credentials within your organization, including their confidence levels and user information, in the selected time frame.

Each record or security event in the ERM Leaked Credentials table is based on the following attributes:

  • User

  • Application

  • Password

For example, the same user may appear with two different published passwords.

Note:

As part of the Leaked Credentials add on, the system retrieves the data from the last six months. Data prior to this period is not available.

Column

Description
Observation Date Shows the date when the system first detected the leaked credentials.
User The full name and email address of the affected user.
Job Title/Department The job title and department associated with the user.
Application The website from which the credentials were leaked.
Password Lists the compromised password.
Confidence

Indicates the severity level and likelihood of misuse.

  • Low

  • Medium

  • High

Source The origin of the leak (for example, dark web, public repository, breached database).