How to use Data Breach Scanner for your company

Introduction

This guide will show you how to use the Data Breach Scanner for your company.

 

Before you start

The Data Breach Scanner will show you these statistics:

  • The total number of breaches, scanned active members, and scanned domains. 
  • The total number of risks is separated into high-risk and low-risk categories. 
  • A chart with the total number of breaches at the end of each month for the past six months.

    Note: Breaches are counted as compromised data groups on a website - if one website, phone, or address gets compromised, we count it as a single breach.

 

A single breach can be classified as either high-risk or low-risk only. The risk level is assigned based on which data was compromised. For example, a leaked date of birth or company name is considered low-risk. NordPass regards high-risk data as:

  • Third-party systems API keys
  • Bank details
  • Credit card details
  • Passwords
  • Social security numbers

 

Here's what to do

  1. Firstly, set up the Data Breach Scanner with your domain using our guide.
  2. Log in to the Admin Panel for Business as an organization's owner, and you will see the breach statistics from the "Dashboard" section.
  3. Click on the "View Report" button, located to the right of the Data Breach Scanner, to get more information.
  4. Afterward, you will see detected breaches, breach date, and how many people were affected.
  5. After clicking on your chosen breach, you’ll see breach details, affected people, their group, and roles. We recommend checking out our guide on how to handle a data breach.
  6. If you wish to resolve the breach, click on the “Mark as Resolved” button and confirm your decision by clicking on the “Mark as Resolved” button once more.
  7. Alternatively, if you wish to mute breach notification for a specific user, click on the “Three-dots” button, located to the right of their email address, and select the “Mute” option.

    Note: If you wish to disable alerts, we recommend checking out our guide on how to disable alerts for Data Breach Scanner.

 

Additional Tips

  • If the domain is unknown, we cannot provide further clarification with that specific entry. This occurs because data found on the dark web can be incomplete - we may find out about the total scope of data categories, but data itself may be missing. In either case, we will inform you when your email address or credit card is found, regardless of the data completeness. It is important that you change any passwords you may be using with the exposed credentials.
  • We recommend checking out our guide on how to handle a data breach incident to better understand how to protect your organization.

Was this article helpful?