Leaked Credentials events

what are leaked credentials events? as flare collects data from various sources, leaked credentials are continuously extracted from ingested documents and indexed in flare, both in the events feed and in the docid\ d3onszzq0knmu79ma 5oe leaked credentials matching your identifiers will be added to your tenant feed, so that you can actively monitor for leaked credentials directly affecting your organization leaked credentials events in the tenant feed previously, newly detected leaked credentials were periodically grouped into digest cards in your feed going forward, each newly detected credential affecting your identifiers will appear as its own individual event card as soon as it is detected how do they work? leaked credentials events include the associated email/username and password details, right on the event card newly detected credentials affecting your tenant appear instantly in both the tenant feed and the credentials browser the number of leaked credentials events visible in your tenant feed will exactly match the number shown in the credentials browser and the dashboard remediate and ignore leaked credentials events remediation and ignore statuses are synchronized between the feed and the credentials browser remediating a leaked credential event in the feed will remediate the corresponding credential pair in the credentials browser vice versa, remediating a credential pair in the credentials browser will remediate the corresponding leaked credential event remediating a leaked credential pair will also remediate future credentials with the same username/password combination ignoring a leaked credential will ignore all credentials pairs affecting the same email address/username alerts on leaked credentials events even though leaked credentials events appear instantly in the tenant feed, alerts for leaked credentials are effectively triggered every hour, even when set up to be sent as soon as possible the alert message will include all individual events that were added to the tenant feed in that window of time please note alerts do not include password values, regardless of tenant permissions this applies to email alerts and other channel types leaked credentials in global search searching for leaked credentials in global search generates a card to group leaked credentials results please note there is a limit of 1000 credentials to be grouped in the resulting card of a global search the docid\ d3onszzq0knmu79ma 5oe global search provides a way to search and explore leaked credentials with no such limitation