With a recent hack where passwords, usernames, emails, and IP addresses of more than 560,000 people were exposed on a popular web comic forum XKCD, do you know if you’ve been pwned?
Here’s a background of the recent breach:
A popular web comic informed patrons of its online forum that a data breach leaked sensitive information of more than a half-million users.
The online comic, called XKCD, which ironically comments on science and tech culture, including web security, disclosed the breach over the weekend after being alerted by researchers from the data breach website, Have I Been Pwned.
Have I Been Pwned was initially made aware of the hack by security researcher Adam Davies. Hackers were able to steal hashed passwords encrypted using the MD5 algorithm which converts a plaintext password into a random assortment of letters and numbers.
While the passwords were encrypted, MD5 has long been considered to be an insufficient method of safeguarding sensitive information and can be fairly easily decoded using cracking software.
Have I Been Pwned?
To check if your password may have been exposed in a previous data breach, click here and enter your email address.
The search tool will check it against the details of historical data breaches that made this information publicly visible.
If your password does pop up, you’re likely at a greater risk of being exposed to hack attacks, fraud and other cybercrimes.
Mr. Hunt built the site to help people check whether or not the password they’d like to use was on a list of known breached passwords.
The site does not store your password next to any personally identifiable data and every password is encrypted.
Other Safety Tips
Hunt provides three easy-to-follow steps for better online security. First, he recommends using a password manager, such as 1Password, to create and save unique passwords for each service you use.
Next, enable two-factor authentication.
Lastly, keep abreast of any breaches.
Source: Daily Mail