LabTech Plugin: Have I Been Pwned?

Posted on June 2, 2016

This plugin uses information from https://haveibeenpwned.com/ to check the contacts in LabTech against known website breaches where information was released. This can help you easily identify users that should consider changing their password. If you have contacts set to sync from your PSA (like ConnectWise or AutoTask), you can leverage the tool to check all known email addresses automatically and regularly as new breaches occur.

Update: You can now right-click on a breached account (or multiple accounts) and send an email to let the contact(s) know about the breach and suggest a password change.

How to use this plugin:

• Install the plugin with our Plugin Installer and restart LabTech Control Center.
• You’ll have a new item in the Tools menu titled “Have I Been Pwned?”.
• Upon opening, there will be no available items. Right-click and choose “Rescan Contacts”. This process will take approximately 1 second per contact.
• Close the window and come back later.
• You should now see any compromised contacts and can filter and export the results as needed.

Note that this process will run every month on the first of the month automatically to get an updated list. You can also force an update at any time using the Rescan Contacts option, though this shouldn’t need to be done frequently. When the scan is run, a ticket will be created if any newly compromised accounts are found – that is, any accounts are found that weren’t found before, regardless of the date of the breach. You can disable ticketing by adding a property in Dashboard->Config->Configurations->Properties. Use the name “SDPwnedDisableTicketing” and a value of “1”.

Categories: LabTech Plugins