Enhancements
Partial masking of passwords
As we continuously enhance our product security and uphold our customers' privacy by adhering to industry best practices and international cybersecurity standards, we are announcing that passwords found on the dark web will now be partially masked in the latest release of Dark Web ID. This provides the ability to see some characters in order to validate the compromised credentials, without exposing the entire password. This new functionality provides the highest level of protection against cyberattacks to ensure the utmost confidentiality of our customers' data.
As follows is an outline of the updated password masking policy:
- Passwords with fewer than 4 characters: The entire password will be concealed with asterisks.
- Passwords with 5 to 7 characters: The first 3 characters will be masked, while the remaining characters will be visible.
- Passwords with 8 or more characters: The first 3 and last 2 characters will be displayed, with the middle section masked.
Passwords that were added before this update will remain unchanged.
Infrastructure updates
Effective July 2, 2024, Dark Web ID has enhanced scanning of the dark web for compromised credentials and other data as follows:
- Live Search may take up to 30 seconds to return results as we interrogate multiple dark web sources.
- IP Compromises may increase based on deeper scanning of the dark web.
- We have provided additional descriptions of domain and email compromise fields.