Account Theft Audit
1. Temporary Limited Access
Cloudsweeper uses OAuth2 to connect to your GMail account, so that we never have to ask for your Google credentials. OAuth means you stay in control of your account, can revoke access anytime you'd like, and your username and password stay secure and private.
2. Scanning for Risks
Our system programtically checks your email archives, looking for the kinds of things that hackers are interested in. This includes things like access to other accounts, account credentials, and other things attackers are interested in stealing. Humans never see your data, and statistics about your account are only kept if you opt in.
3. Threat Report
Once the scan is complete, the audit will show what was found, and what other accounts you use an attacker could gain access to through your GMail account. Recent underground prices for these accounts will let you know a rough estimate of whaty our email account is worth to these attackers.
This tool can report aggregate, non-personal statistics like number of passwords found and whether you chose to redact or encrypt them to us for research purposes. Would you be willing to participate in this study? We collect no personally identifiable information, store it securely, and will freely share the results of our research.
You have opted out of particpating in the study. You can still use this tool to audit the value of your email account. Neither the functionality of this tool, nor your ability to use it, are impacted in anyway by this decision.
No permanent information about you or your email will be recorded beyond what is needed to perform the audit. Once you leave or logout of Cloudsweeper this temporary information will be removed too.