...
This includes vulnerabilities, malicious indicators and exposed or compromised credentials ;
. Whenever possible the eduGAIN Security Team will notify entities when information about exposed credentials surfaces. Although the origin of the compromise or its context may not be known, the available data is made available to the possibly affected entity, so that they can make their own determination.
...