Understanding and managing your organization's external attack surface is crucial for maintaining a strong cybersecurity posture. To support this, Lumu Discover provides comprehensive downloadable reports that offer in-depth visibility into your external digital footprint. These reports compile critical data on exposed assets, vulnerabilities, misconfigurations, and potential risks that attackers could exploit, all in an easily comprehensible format that can be shared with team members and stakeholders of all backgrounds.

This documentation outlines the structure, content, and best practices for utilizing these reports effectively to enhance your organization’s security strategy.

How to download

You can easily download your organization’s EAS report from the Lumu Discover module, you can find how in the corresponding article.

How to read the report

You will receive your report in PDF format via email. Once you open it, you will find the cover of the report:

The cover will tell you the name of your company as it is registered in the Lumu Portal(1), and the domain whose EAS data you will find in this report(2) in case you have more than one domain registered.

You will also find the date of generation and time zone so you can keep a proper tracking of the condition of your EAS over time:

After this, you will find all the different sections of the report.

Executive Summary

The Executive Summary section provides a high-level overview of your organization’s external attack surface exposure.

It presents key indicators that summarize your network’s security posture, offering a clear, simplified view of potential risks. This data can be used to brief stakeholders without a technical background on the network’s exposure status.

Here is an example of what you'll find in the Executive Summary section, which is divided into three subsections: Dark Web Exposure, Infostealers Exposure, and DNS Recon & Research. For more details on these indicators, refer to the Lumu Discover module.

Recommendations

In this section, you will find guidance on which actions you can take to start operating and correcting the vulnerabilities detected by Lumu Discover.

You can use these recommendations as a baseline to create an appropriate response and mitigation strategy.

The report’s recommendations are tailored according to the state of your network.

Latest Emails Exposed

This section provides a summary of the most recently exposed emails detected by Lumu Discover. While full details are available in the Lumu Discover module, the latest detections featured in the report enables you to regularly update stakeholders on the state of your external attack surface (EAS) in a convenient format.

Below, you can find an example of exposed emails as shown in the report:

Latest Data Leaks

This section summarizes data leaks detected by Lumu Discover, where emails and credentials associated with your organization have been exposed. While full details are available in the Lumu Discover module, including the latest data leak detections in the report allows you to regularly update stakeholders on your external attack surface (EAS) in a convenient format. This is especially crucial given the significant economic impact that data leaks can have.

Below, you can find an example of detected data leaks as shown in the report:

Domain Brand Abuse

This section summarizes similar domains detected by Lumu Discover that may be attempting to impersonate your brand. While full details are available in the Lumu Discover module, the report includes the latest detections, allowing you to regularly update stakeholders on potential impersonation attempts in a convenient format—helping you protect your brand and customers.

Below, you can find an example of detected similar domains as shown in the report:

Latest Infected Devices with Infostealers

This section summarizes infostealer cases detected by Lumu Discover, where devices within your network have been infected with this type of malware. While full details are available in the Lumu Discover module, While full details are available in the Lumu Discover module, the report includes the latest detections allowing you to provide updates to stakeholders in an easily understandable way.

Below, you can find an example of detected infostealer infections as shown in the report:

Top Exposed IPs and domains With Vulnerabilities

This section summarizes network vulnerabilities detected by Lumu Discover, where misconfigurations and insufficient security measures may expose devices and infrastructure to external threats. While full details are available in the Lumu Discover module, the report highlights the latest detections, enabling you to provide stakeholders with clear, actionable insights to enhance your network's security posture.

Below, you can find an example of detected vulnerabilities as shown in the report: