How Troy Hunt Is Alerting Web Users Ensnared in Huge Data Breaches
I've known about the Have I Been Pwned Website for a couple of years, and I decided to check it out to see if it was legitimate. The site was created to alert Web users if their online identities have been compromised in cyber-attacks and data breaches.
So I entered in my email addresses and asked to be notified if the site ever came across any evidence that my information had been stolen.
I immediately heard that I'd been caught in the vast Adobe breach of a few years ago, but I already knew about that and had changed my password. I mentioned the site in my published articles a couple of times afterward, but mostly didn't think about it.
Then I got a disturbing email. The email alert system from the Website sent me a notice that my user name and password had been compromised in the even more vast LinkedIn breach of four years ago. While I knew about that breach as well, I hadn't given it a lot of thought because LinkedIn had told users that they would notify anyone who had been included in the breach, and I hadn't been notified.
NEWS ANALYSIS: An Australian security researcher is single-handedly trying to help Web users discover whether they have been caught up in the rising tide of immense data breaches.
Just the same, I changed my LinkedIn password. I changed it once after I heard about the breach, and then I changed it again later because I'd decided that the new password was too easy to guess. Then I didn't think about it again until it was time for my regular password changes.