Get the latest Vulnerability Intelligence Roundup
Data Leakage / Validate Exposed Credentials with Okta to Save Even More Time

Validate Exposed Credentials with Okta to Save Even More Time

Validate Exposed Credentials with Okta to Save Even More Time
Michael Marriott
Read More From Michael Marriott
August 24, 2020 | 3 Min Read

SearchLight customers can now automatically validate credential alerts via an integration with Okta, drastically reducing the time required to triage. 

You may have seen our recent research report, which discovered that there are more than 15 billion credentials exposed online. Since we published that report in June, that number has actually increased by another billion. 

I don’t wish to recap our research paper (you can download a copy and read for yourself), but there were two findings that warrant a bit further analysis: 

  1. Two thirds of those credentials were duplicates
  2. More than 80% of those credentials were in plaintext. 

Five questions security teams must answer when triaging credentials

Presented with a batch of employee credentials, security teams are required to ascertain the risk to the company and then take the necessary steps to mitigate impact. 

  1. Has the employee left
  2. Is this email address actually real, or has it been simply made up
  3. Is this password the same as for the corporate accounts
  4. Has this credential pair already been actioned
  5. Is this a current password?

Given how many duplicate credentials our research team discovered, there’s an awful lot of triage team that is being wasted by traditional approaches. 

New validation options

SearchLight customers can now automatically confirm the validity of these credentials automatically, and save precious triage time. 

Email and Password Format

The ability to integrate with Okta builds on our already-existing abilities to validate exposed credential pairs by their email and password format. This includes the ability to specify the follow for each domain:

  1. Minimum length
  2. Lowercase character
  3. Uppercase characters
  4. Contain numbers
Password Validation

Integrate with Okta 

Of course, some companies may not have defined password or email formats. Even for those that do, these may be inconsistently applied (for example, the “” email may not follow the same as “

That’s why we’ve just released our integration with Okta, which enables SearchLight users to automatically validate email addresses within their Okta instance. That means that when the alert comes through, users will already have a good idea if that credential needs triaging. 

But it doesn’t end there. Users can automatically reject alerts that are invalid, which vastly cuts down on the number of alerts security teams have to triage. 

SearchLight Exposed Credential Alert

Once this integration has been set-up in the Integrations section of the portal, users can set up validation this up by going to Configure – Risks – Exposed Credential – Automation.

Okta integration

You only triage once

The beauty of this validation is that once you action a credential pair, you can either reset the affected account, or add it to your allowlist in SearchLight. Doing the latter will mean that you will not have to keep on triaging that same credential pair over and over again. 

Get in touch to learn more about Digital Shadows’ integration with Okta, and learn how you can spend less time triaging alerts. 

Related Blog Posts

Vulnerability Intelligence Roundup: Five lessons learned since Log4Shell

Vulnerability Intelligence Roundup: Five lessons learned since Log4Shell

November 29, 2022 | 4 Min Read

As the holiday season approaches, my family has...
Dark Web Recruitment: Malware, Phishing, and Carding

Dark Web Recruitment: Malware, Phishing, and Carding

November 10, 2022 | 12 Min Read

In our first blog in this series, we covered how...
2023 Cyber Threat Predictions

2023 Cyber Threat Predictions

November 1, 2022 | 14 Min Read

As we move towards the end of 2022, now is the...