Available search fields
Get available search fields for data breach events using the discovery endpoint:Common fields
company_name
: The name of the company affected by the data breach.event_date
: The date when the breach occurred.extraction_date
: The date when the event was extracted from news sources.
Data breach-specific fields
data_breach.data
: The types of data that were compromised in the breach, such as customer phone numbers or email addresses.data_breach.data_type
: The classification of the leaked data. Possible values: technical, financial, personal, health, credentials.data_breach.impacted
: The types of entities affected by the breach, such as clients, customers, or employees.data_breach.summary
: A detailed description of the data breach event and its impact.data_breach.title
: The title summarizing the data breach event.
Searching for events
Use the search endpoint to find data breach events:Basic request structure
Using search fields
Search by dates (absolute or relative):Understanding the response
The API returns matched events in this structure:Best practices
- Use
extraction_date
for new breach alerts andevent_date
for analyzing disclosure patterns. - Combine
data_type
anddata
fields to find specific categories of compromised information. - Search across wider date ranges as breaches often get disclosed weeks or months after occurrence.
- Use
impacted
field to focus on breaches affecting specific groups like customers or employees.