Skip to content

I suggest you ...

← General

Include email addresses (or some info) for domain notifications

If you're doing a domain notification (notifying of any info for your domain that becomes compromised), you'd like to relay concerns to your users when those alerts come up. Right now, we're just getting a number of accounts, rather than the actual specifics. Even listing email addresses would help.

1 vote
Vote

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
You have left! (?) (thinking…)
Art shared this idea  ·   ·  Report…  ·  Admin →

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • AdminTroy Hunt (CEO / Founder, Have I Been Pwned) commented  ·   ·  Report

    The reason email addresses are not included in the notification is that email isn't considered a secure channel and the information can be sensitive. For example, I wouldn't want to see membership of a site like Ashley Madison communicated insecurely.

    Every domain notification email has a link to run another domain search which will allow you to see everyone involved in the incident.

General

Categories

Feedback and Knowledge Base

(thinking…)