Skip to main content
日本語 简体中文 繁體中文

[Cloud Protection] Verify compromised account information

Target

  • Administrators who perform the initial setup and operational management of HENNGE Cloud Protection

Purpose

  • HENNGE Cloud Protection detects compromised email accounts within the domain.
  • This article explains how to check the information of compromised accounts in the HENNGE Cloud Protection Administration.

Notes

  1. This article is based on the product specifications as of December 2024 and is subject to change without notice.
  2. You need administrator privileges for HENNGE Cloud Protection to confirm actual screen displays and make settings changes.
  3. For instructions on how to access the HENNGE Cloud Protection Administration, please refer to the following article: Accessing the HENNGE Cloud Protection Administration

Procedure

1. Access [COLLABORATION PROTECTION] - [Compromised Accounts] from the left menu of the HENNGE Cloud Protection Administration.

2. If there are compromised accounts, you can check the list of accounts.
※ If there are compromised accounts, you can narrow down the search by specifying the domain name and email address in the search window at the top of the screen, and clicking the [Refresh] button.

Items (Severity)

The detected information is classified into the following 4 severity levels.

Name Description Notes
Compromised Email Address (Severity: Low) Email address or email address with an undecipherable hashed password has been compromised (exposed). -
Compromised Email Address and Password (Severity: Medium) Email address and plaintext password have been compromised (exposed). This severity occurs when the user changes the password after the compromise, or when multi-factor authentication is enabled even if the password has not been changed.
Compromised Email Address and Password (Severity: High) Email address and plaintext password have been compromised (exposed). -
Infected User (Severity: Critical) The device used by the user is infected with malicious software.

Since malicious software may be logging all keystrokes, it is recommended to change the password of the affected account, implement additional security measures (such as multi-factor authentication), and promptly regain control of the account.

※ Depending on the severity level, warning emails can be sent to administrators or affected users.
By default, warning emails are sent to administrators and affected users (Severity: Medium and above).
If settings need to be changed, please refer to How to Edit Policies.