Tuesday, January 22, 2019

Word of the Day: Have I Been Pwned (HIBP)

Word of the Day WhatIs.com
Daily updates on the latest technology terms | January 22, 2019
Have I Been Pwned (HIBP)

Have I Been Pwned (HIBP) is a website that allows users to search and find out if an email address's password has been compromised by data breaches. The service is a popular and commonly-used tool in IT security.

As a database service compiled from known leak sites, the service allows users to quickly check to see if a particular email account has been compromised by a data breach. The database is compiled from crawls of a number of websites and database dumps. Some of these sites are believed to purchase account information from hackers.

HIBP was created after a large data breach at Adobe in October 2013. Since the site's creation, HIBP has become legitimized as a security tool by tech-savvy users to keep their information safe. Corporations trying to assist users after data breaches also sometimes offer HIBP links in notification emails.

Have I Been Pwned was created and independently run by Troy Hunt, a Microsoft Regional Director. In June 2018, it was announced that HIBP had partnered with Mozilla Firefox and 1Password to integrate the service into new products.

Pwn is a hacker/gamer variation on the word own and a leet speak term meaning to defeat overwhelmingly or to dominate.

Quote of the Day

 
"Using Have I Been Pwned as a tool to increase your situational awareness on the status of current major breaches is an added way to keep yourself and your organization safe." - Matt Pascucci

Learning Center

 

Collection #1 breach data includes 773 million unique emails
A new trove of 773 million unique emails -- known as the Collection #1 breach data -- gathered from various data breaches were added to Have I Been Pwned, but there are questions about the freshness of the data.

Have I Been Pwned integration comes to Firefox and 1Password
Both Firefox and 1Password announced new Have I Been Pwned integration to help users discover if email addresses have been compromised in known data breaches without disclosing personal information.

Firefox Monitor offers breach alerts on visited websites
Mozilla has begun rolling out a new feature of Firefox Monitor, which will provide breach alerts when a user visits a recently compromised website, based on data provided by Have I Been Pwned.

Risk & Repeat: Who's to blame for bad passwords?
This Risk & Repeat podcast examines a recent Twitter debate between Duo Security's Wendy Nather and Troy Hunt, owner of Have I Been Pwned, over bad passwords. Are users who create and reuse weak passwords mostly to blame or are the technical systems that allow the behavior the primary cause?

How should security teams handle the Onliner spambot leak?
Expert Matt Pascucci explains what actions enterprises should take after a list of 711 million user credentials was stolen by the Onliner spambot.

Quiz Yourself

 
The credit union website uses two-factor authentication to protect _____ members.
a. their
b. its

Answer

Stay in Touch

 
For feedback about any of our definitions or to suggest a new definition, please contact me at: mrouse@techtarget.com

Visit the Word of the Day Archives and catch up on what you've missed!

FOLLOW US

TwitterRSS
About This E-Newsletter
This e-newsletter is published by the TechTarget network. To unsubscribe from Whatis.com, click here. Please note, this will not affect any other subscriptions you have signed up for.
TechTarget

TechTarget, Whatis, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com

Copyright 2018 TechTarget. All rights reserved.

No comments: