# SentriWatch Sample Redacted Alert Report

Report ID: SW-ALERT-REDACTED-001
Generated: 2026-04-12T17:30:00Z

## Alert Summary
- Severity: High
- Category: Credential pair exposure
- Detection source type: Dark web credential market listing
- Detected mailbox (redacted): p***@example-health.org

## Detection Details
- First seen: 2026-04-12T17:25:41Z
- Last seen: 2026-04-12T17:29:58Z
- Confidence score: 0.96
- Source reference: redacted

## Risk Assessment
- Likely account takeover risk if credentials are still valid.
- Lateral movement risk if the mailbox has privileged internal access.

## Immediate Response Actions
1. Force password reset for impacted mailbox and related privileged accounts.
2. Enforce MFA enrollment for impacted users.
3. Revoke active sessions and refresh mailbox/application tokens.
4. Review suspicious login events and mailbox forwarding rules.

## Verification Follow-Up
- Confirm TXT domain verification remains valid.
- Re-run targeted scan after containment actions.
- Document timeline and control improvements.