While surfing came across this two sites which tell you if your username or email has been in one of the stolen databases.
Obviously page doesn't ask for passwords or similar, you just type in your email address or username and it checks it for you. Out of a few email accounts i use only one showed up as hacked. Not bad idea to check and if necessary change passwords since in the last few years Yahoo, eBay, LinkedIn… have shared their databases with everyone
Here the links
Usually it shows where they have it from too
Yup. Myspace ;)
With literally billions of leaked account details now leaked since 2012 the time to stop using passwords you came up with yourself is over because people are surprisingly non-random and consistent when they do this. There is a significant chance those "random" passwords you came up with on your own will now be tried due to these leaks.
If you are reusing passwords these days your just asking for it.
Use a password manager.
Until the password manager itself becomes compromised, no?
Then how would you manage your numerous passwords, or would you re-use passwords instead?
haveibeenpwned works. Recently, I got my Ubisoft account hijacked. The mofo used google authenticator 2FA on my account and I couldnt reset my password (I didnt realise Ubisoft started using 2FA) so I ran my email in haveibeenpwned and woah, myspace and linkedin were responsible.
Recently started using lastpass pro for all my passwords.. works great most of the time and alerts me to breaches.
A few sites even lets me auto change passwords.
Can recommend it.
Excuse my lack of knowledge on this, but how can you be sure that a password manager is safe? Why is the company providing this free service/software? Does it give them a way to hack into all users' accounts if they want to?
And even with this haveibeenpwned and leakedsource, are they going to use your email address for spam or else once they have it?
I realise that this may sound a bit paranoid, but it seems to me that the more you read about the issue the less you trust anyone.
Open Source: http://keepass.info/
Any program on your computer could intercept your passwords, do you trust all of those?
Thanks fruit. Now I feel much better about it all… :-(
Enable two factor for things like email, paypal etc. and you can feel a bit better :)
oh noes, [email protected] as been pwned!
personally i wouldn't enter any of my real email addresses in there … could be the ultimate email harvester.
I thought of that then curiosity got the better of me :(
Troy Hunt, the person operating haveibeenpwned.com, is a legit security researcher and is a presenter in many security conferences. But nevertheless, it's good to be skeptical of most sites that may ask for your details.
Mine got Adobe, Dropbox, and vBulletin
Luckily I've changed all of the password since…
Pwned on MySpace and Adobe
I like 1Password but people need a password manager (sadly) in 2016.
2 step login - problem solved.
http://www.news.com.au/technology/online/hacking/dropbox-dat…
No wonder I've been getting much more spam in the last few months.
5 breaches on my primary email. Scary stuff.
i know my details from the my red cross blood donation have been pwned - it was in the news.
Interesting. My really old Hotmail showed up in some data breaches from a while back, but no mention of the Hotmail vulnerability that caused it to be hacked in the first place.