To turn on Dark Web Monitoring, navigate to the Risk Score Settings page under administration and toggle on "Have I Been Pwned" in the Exposure tab.
After this toggle has been turned on, the Dark Web Monitoring page is found by navigating to Targets / Groups > Dark Web Monitoring.
The table on the Dark Web Monitoring page contains a list of Breach Entries with the following columns:
- Email - The email of the target that was found in the breach.
- Title - Name of the organization that was breached.
- Domain - Domain of the organization that was breached.
- Breach Date - The timestamp of the breach date.
- Reported Date - The date that the breach was reported.
- Severity - The severity of the breach.
-
Status - The status of the breach, with the possible statuses as follows:
- "Opened": The finding has been found but not actioned on; the score or finding has been applied.
- "Dismissed": The finding is not considered negative for the target; the score is removed.
- "Mitigated": The finding has been actioned on for the target; the score is halved.
- Actions - Contains an option to view the breach entry, as well as an option to edit the breach status of the entry.
Note: Dark Web Monitoring findings only apply for 2 years, and are subject to decay.