Leaked credential on paste/sentry site

Circle USYC's assessment for RD-F-164 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

No credential dump for USYC/Hashnote/Circle USYC infrastructure found in publicly accessible sources. Have I Been Pwned does not list Circle USYC as compromised dataset per OSINT. Paste site monitoring cannot be systematically assessed without a dedicated feed. Circle as a BMA-regulated entity presumably uses enterprise-grade secret management but no independent verification performed. M-only factor; production assessment deferred to curator with feed access.

Sources #

URL
Have I Been Pwned - Pwned WebsitesHave I Been Pwned - no Circle USYC dataset listed as pwnedretrieved 2026-05-16

Methodology #

Determine whether a public paste site, Sentry-alt, or credential-dump references protocol infrastructure endpoints or API keys.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol circle-usyc factor RD-F-164 score gray collected_at 2026-05-15 21:56:43