Articles on: Watchers

What Is A Watcher?

What Are Watchers in Selki?


In Selki, Watchers are how you monitor your organization's digital footprint across infostealer logs.


A Watcher represents a domain you own (e.g., yourcompany.com). Once added, Selki’s AI actively monitors infostealer logs to detect any credentials associated with that domain.

This article explains the Watchers dashboard and how to interpret what you see.


Watcher Main Page



Watchers List (Left Panel)

A summary of all the domains (Watchers) currently being monitored:

  • Name and domain (e.g., Flexline — flexline.cl)
  • Status: Active domains are being scanned regularly.
  • Threat Count: Total number of threats detected for that domain.
  • Created Date: When the domain was added to Selki.
✅ Tip: Click the ➕ Add button to register a new domain (Watcher) for monitoring.


Watcher Overview Panel (Right Side)

When you select a domain, you'll see the following details:

  • Domain Details: Name, domain, and plan (e.g., Premium Monitoring)
  • Status: Confirms that the Watcher is currently Active
  • Created On: Timestamp of when this domain was added


Monitoring Sections

  • Monitoring: Indicates whether credential monitoring is turned on
  • Alerts: Whether alerting is active (email, in-app notifications)
  • Security: General health of your domain’s monitoring setup
  • Scan Threats: Whether Selki has identified credential data from infostealer logs associated with this domain


Threat Activity

This graph shows a time-based breakdown of threats detected for the selected domain. It helps you:

  • Spot unusual spikes in credential exposure
  • Validate the effectiveness of your remediation efforts


Recent Threats

A quick summary of the latest discovered threats for this domain:

  • Date of detection
  • Impacted Employees or Clients
  • Number of Open Threats


How It Works

  1. You add a domain (Watcher).
  2. Selki scans and extracts data from infostealer logs (e.g., RedLine, Raccoon, Lumma).
  3. Any credentials, cookies, or sensitive data linked to email addresses under that domain (e.g., name@yourdomain.cl) are flagged.
  4. Threats are surfaced in real time, alerting your team before they’re exploited.


Why Use Watchers?

  • Detect exposed employee or customer accounts early.
  • Protect corporate access to internal and third-party services.
  • Stay ahead of ransomware, BEC, or account takeover attempts.
  • Comply with cybersecurity best practices and regulatory requirements.

Updated on: 08/08/2025

Was this article helpful?

Share your feedback

Cancel

Thank you!