Leaked Credentials

The Leaked Credentials add-on enables automated detection and management of compromised user credentials exposed on the deep and dark web. It strengthens your organization's identity protection by providing early alerts and actionable intelligence to defend against:

  • Account takeover attempts

  • Unauthorized access using stolen credentials

  • Credential-based phishing and fraud

  • Leaks of corporate and personal data

Note:

Avanan shows leaked credentials only for currently protected users.

Overview

When a leaked credential is detected, the Leaked Credentials add-on monitors external sources for compromised credentials and generates a security event in the Avanan Administrator Portal, allowing administrators to take immediate action, such as resetting passwords or blocking access, to contain the threat.

Key Features

  • Real-Time Credential Monitoring: Continuously scans deep and dark web sources for compromised credentials.

  • Automated Security Event Generation: Creates a security event for each detected leak.

  • Early Warning Alerts: Notifies administrators of exposed credentials, enabling timely response actions such as password resets.

  • Historical Exposure Tracking: Provides visibility into past credential exposures for risk assessment and remediation.

Benefits

  • Instantly detects exposed employee credentials from breach dumps and underground sources.

  • Enables immediate remediation by blocking users or enforcing password resets before account compromise.

  • Streamlines incident response by integrating exposure events into existing SIEM workflows.