Breached Password Identification

Passwords exposed in various data breaches worldwide are publicly available as a data dump. Many times, users are not aware when their passwords are exposed in credential spilling attacks. If a breached password is being used, it may lead to a spate of cyberattacks. To prevent such incidents, Securden can periodically scan the dump and check if any of the passwords stored in the product matches with the passwords that have been exposed in known data breaches. You can configure how often Securden should check for breached passwords. Whenever usage of a breached password is detected, email alerts will be sent to administrators, auditors, respective account owners, and other specified users.

Important

In addition to periodic checks, Securden runs this check at the time of account addition and password change events provided the product is connected to the internet.

Configuring Breached Password Identification

Navigate to Admin >> Notifications >> Breached Password Identification.

Enable breached password Identification to view the configuration options.

To configure Breached Password Identification, follow these steps.

Periodicity of checks

• You can specify the interval (in days) at which the breached passwords identification check is to be performed.
• You can get email notifications whenever a breached password is identified by enabling the Enable Email Alerts Upon Identification option.

Who to Notify?

Upon enabling email alerts, you can choose who receives the notification upon identification.

• You can trigger the notification upon the occurrence of the selected events to any specific user(s) or usergroup(s). You may even choose to trigger notifications for certain specific roles of users too - for example, ‘All Administrators’, ‘All Auditors’, etc.
• You can also send notifications to people who are not registered users in Securden by specifying their email address in the box named Others (specify email address).