Publication Date – February 8, 2021
When classifying observations as Exposed Credential findings, discovered email domains are matched with email domains owned by Bitsight customers. However, many websites do not actually validate email addresses, which makes it difficult to assert that certain exposed records are associated with company employees.