With so much personal data stored online, keeping your password secure is really important.
Troy Hunt, a Microsoft MVP for Developer Security has created a website that allows you to check if you have an account that has been compromised in a data breach.
Have I Been Pwned checks against 41 known data breaches, including 152,445,165 Adobe accounts, 4,789,599 Gmail accounts, 453,427 Yahoo! accounts.
The site is secure, and doesn’t ask for your password: just the username or email address that you’ve used to sign up for an online account. The site then checks it against a lists of compromised accounts.
As Troy Hunt says, “all the data on this site comes from publicly leaked ‘breaches’ or in other words, personal account data that has been illegally accessed then released into the public domain.”
The who what & why and FAQ pages provide a lot of detail about what’s going on behind the scenes, and answer a lot of questions about the security of this site.
I only use a couple of email addresses. Against one of them I’ve had no breached accounts—hoorah!
Against the other, though…
My main email address was involved in the big one: in October 2013 the data for nearly 153 million Adobe accounts was leaked. Adobe made it public pretty quickly and all users were encouraged to change their password, which I did.
I’m really impressed with this website: using leaked data for good, rather than ill. Check it out and find out if you’ve been pwned: Have I Been Pwned?
Note: the word ‘pwn‘ is geek-speak for ‘own’, implying that you’ve been dominated. It came about probably due to a typo as ‘o’ and ‘p’ sit next to one another on a QWERTY keyboard.