SOCRadar
I made a brief visit to the SOCRadar web site and checked one of our domains.
It shows several "Employee Credentials" records. Interesting. Because even with the obfuscated data (they only show the first and last character of the email address unless you hand over your email address) I can say with 100% certainty that those credentials do not exist and have never existed. Perhaps somebody put those email addresses into a document somewhere. Perhaps somebody signed up somewhere with that email address. It doesn't matter - it has never been a working email address.
I did a search back through our mail logs. I can see several attempts to send email to something which would match the first-and-last@domain characters shown at SOCRadar. In every case we rejected the attempts with 'Recipient address rejected'.
These are the only entries for the domain I tested. I can say with 100% certainty that these are not 'Employee Credentials' and have never been.