Summarise the breach info at the top of domain wide searches
When you search across a domain at present, the breach name is listed next to each impacted account but it's not clear when it happened or when it was loaded into HIBP. It might not make sense to list this info next to every single breached account in the list, but a summary at the top of the page listing key attributes of each relevant breach would be handy.
AdminTroy Hunt
(CEO / Founder, Have I Been Pwned)
shared this idea
-
GB
commented
You might also consider reworking the Excel format of the report to have the following columns:
Date (ISO8601?), Breach Common Name, Email address (one per line)
Date would be the date that the breach was entered into HIBP.
Once formatted like this, the data becomes filterable by the essential elements of when the breach was recorded (in HIBP), what was found in a particular breach and by the email address.
-
GB
commented
Why not list the entries in a domain search in date descending order of when the breach data was added into HIBP?
Use case: You receive an alert as an admin of domain X and run a domain search on it. There's potentially thousands of entries spanning multiple years in the results returned. However at the top of this new format, the breach of entity ABC is listed with yesterday's date (date of entry into HIBP) and the 5 accounts found in that breach. Below that there's a breach from a week earlier listed for entity XYZ with another 10. These 15 email addresses in recent breaches are the ones you're interested in - not the ones from 4 years ago of staff whose email addresses no longer exist.