Flare Launches Foretrace B2B2E Identity‑Risk Platform for Employees
What Happened – Flare announced the general availability of Foretrace, a B2B2E service that gives employees personal visibility into credential exposures and remediation tools. The solution leverages Flare’s existing threat‑intel pipeline (≈100 M stealer logs, 57 k Telegram channels, 20 B leaked credentials).
Why It Matters for TPRM –
- Extends third‑party identity intelligence to the human layer, reducing the attack surface from employee‑level credential leaks.
- Provides a measurable control that can be incorporated into vendor risk assessments and security‑culture programs.
- Shifts risk mitigation from “awareness‑only” training to actionable, personal remediation.
Who Is Affected – Enterprises across all sectors that employ remote or hybrid workforces, especially those using SaaS identity‑management or IAM solutions.
Recommended Actions –
- Evaluate Foretrace as a supplemental control in your IAM/identity‑risk program.
- Map the service to existing TPRM frameworks (e.g., NIST 800‑53 IA‑5, ISO 27001 A.9).
- Pilot the offering with a representative employee cohort and measure reduction in credential‑exposure alerts.
Technical Notes – Foretrace does not introduce new software vulnerabilities; it consumes Flare’s existing data feeds (stealer logs, leaked credentials, Telegram monitoring) and presents them via a private employee dashboard. No CVEs are associated. Source: Help Net Security