FAQ

CyberVor Breach Frequently Asked Questions

How do I check whether my identity was compromised in a CyberVor breach?
How much does it cost?
My email was not found in CyberVor breach database. Does it mean my electronic identity is safe?
My email was found in CyberVor breach database. What does it mean to me?
Do I have to send you my passwords?
I registered, but have not received a ticket number to check the passwords.
Who sees my passwords?
How can you compare the passwords that you can’t read?
What about imposter websites, or if my computer has a virus when I fill out the password form?
What about $120 and the Breach Notification Service?
By searching for my e-mail in the CyberVor database, am I signing up for anything else?


Q: How do I check whether my identity was compromised in a CyberVor breach?
A: To check whether your email has been compromised in the CyberVor Breach, please fill out the registration form on our website:
http://www.holdsecurity.com/services/deep-web-monitoring/hold-identity/

Q: How much does it cost?
A: It is FREE to check whether your credentials were affected during the CyberVor breach.

Q: My email was not found in CyberVor breach database. Does it mean my electronic identity is safe?
A: The CyberVor breach may be the largest breach identified to this date. Yet, unfortunately, there is no way to guarantee that your electronic identity was never compromised elsewhere, even if it is not a part of this 1.2 billion credentials breach.

Q: My email was found in CyberVor breach database. What does it mean to me?
A: Do not panic. If your email was compromised during the CyberVor breach, it does not automatically mean that hackers have access to your private information.
To the best of our knowledge, the CyberVor breach was associated with spamming activities during most of the time of its existence. It only occurred recently that the hackers began using the credentials for other activities. Thus some passwords found in the database may be outdated, could be stolen from accounts which do not have any of your private information or be just generic passwords, sent to you during a registration.
To ensure that your current passwords are not affected, we offer you to check the passwords against our database.

Q: Do I have to send you my passwords?
A: Although the passwords we receive are encrypted and will never be seen as a plain text by anyone other than yourself, some of the users may still feel uncomfortable sending out their passwords.
No. There is no need to send your passwords to Hold Security if you feel uncomfortable doing so.

Q: I registered, but have not received a ticket number to check the passwords.
A: The ticket number is available after your registration was processed. We are doing our best to service your request as quickly as possible, but at the time when the number of requests is extremely high, there are significant delays in the service. We appreciate your patience. All valid inquiries will be addressed.

Q: Who sees my passwords?
A: All passwords that you provide are encrypted on your computer before you choose to transmit them to our website, using a very secure algorithm (SHA512). The encryptions occur within your browser using JavaScript. None of the passwords will ever be sent to Hold Security as a plain text.

Q: How can you compare the passwords that you can’t read?
A: Hold Security will receive an encrypted version of your passwords. We will use the same encryption on the passwords in the CyberVor database and compare them to the ones you sent.

Q: What about imposter websites, or if my computer has a virus when I fill out the password form?
A: It is possible that there will be impersonators of Hold Security websites, every time to access any website to which you entrust any personal data, please verify that you are accessing the proper domain. At this time, all of our websites located under holdsecurity.com. Unfortunately, if you have a virus on your computer it may steal your data as you enter it on any website. Please ensure that the computer you are using to access our site or any other site where you enter personal data is virus-free.

Q: What about $120 and the Breach Notification Service?
A: The Breach Notification Service are NOT aimed for individual e-mail users. It is a service to help website owners and other Internet services to be notified if the hackers are attacking or already exploited their systems. It is not only focused on helping to identify the CyberVor-breached websites but it also provides a full year of service for other breach notifications.
The process of verification of the ownership of a website or full Internet domain is required. Then, there is also a process of establishing secure communication in case of a breach notification. Lastly, if you are to experience a breach, you will also be provided an explanation of what have occurred.

Q: By searching for my e-mail in the CyberVor database, am I signing up for anything else?
A: Hold Security is working on an electronic identity protection service which will be available very soon. By submitting your information for search, you are giving us a permission to reach out to you once this new service is available and to invite you to test it out. After that point, if you do not wish to receive any more communications from Hold Security, you will be able to unsubscribe. Your e-mail address will never be used for any other purpose and will never be given to any third-parties without your consent.