diff --git a/docs/content/features/credentials_collectors/ssh.md b/docs/content/features/credentials_collectors/ssh.md
index b85aa0f0e92..f0e7ada9bf7 100644
--- a/docs/content/features/credentials_collectors/ssh.md
+++ b/docs/content/features/credentials_collectors/ssh.md
@@ -8,8 +8,11 @@ pre: "<i class='fa fa-terminal'></i> "
 
 ## Description
 
-The SSH Credentials Collector steals SSH keys from Linux users.
+SSH keys are crucial for secure access to remote servers and systems. Attackers
+may attempt to steal them for gaining access to sensitive systems, data theft,
+lateral movement, privilege escalation, and persistence.
 
-For all users on the system, it locates the `/home/<user>/.ssh`
-directory and steals keypairs from it. The supported private key
-encryption formats are RSA, DSA, EC, and ECDSA.
+The SSH Credentials Collector steals SSH keys from Linux users. For all users
+on the system, it locates the `/home/<user>/.ssh` directory and steals keypairs
+from it. The supported private key encryption formats are RSA, DSA, EC, and
+ECDSA.