: Automatically scans third-party leak databases and underground forums for the organization’s email domains. According to security experts at Group-IB , monitoring these lists provides early indicators of targeted brute-force campaigns.
: Provides administrators with a view of "at-risk" users and the status of automated remediation steps taken, similar to the notification systems offered by Avast . 300K MAILACCESS HQ COMBOLIST.txt
: To counter automated account checkers, the feature promotes the use of hardware security keys (FIDO2/WebAuthn). : To counter automated account checkers, the feature
This feature focuses on protecting users by proactively cross-referencing their credentials against known public leaks and "combolists" to prevent account takeovers. : To counter automated account checkers
: If a match is found in a file like a "300K Mailaccess HQ Combolist," the system triggers an immediate conditional access policy. Security platforms like SpyCloud recommend moving beyond basic MFA to automated remediation that neutralizes exposed accounts instantly.