« Let's go phishing | Main | Say NO to Pie (Charts) »

Password, password, who might have your password?

A little over a week ago the site “have I been pwned?” website reported a large collection of leaked user information, the biggest single collection they'd seen, had been posted to a popular hacking site. While it turns out that most of that data was a compilation of previous data breaches, the data was now available in a single collection of over 770 million unique email addresses and 21 million unique unencrypted passwords.

To check if your email account was one of the ones leaked, you can go to https://haveibeenpwned.com/ (yes, it's pwned not owned) and enter your email account. If your email was one of the ones they've found in leaked data, the site will tell you and, if you scroll down, it will give you details on where and when the leak occurred. You can then use this information to determine whether you should go and change your passwords on the affected sites or if you've already done so since the breach occurred.

Comments

Feed You can follow this conversation by subscribing to the comment feed for this post.

Interesting! Thanks for posting this.

Post a comment