Governance & Risk Management , Identity & Access Management , IT Risk Management
Will Help Prevent Users From Reusing Risky Passwords Jeremy Kirk (jeremy_kirk) • May 28, 2021The FBI will soon begin sharing hashes of compromised passwords found in the course of its cybercrime investigations with Have I Been Pwned, the data breach notification service.
See Also: The Essential Guide to Container Monitoring (German Language)
The password hashes will contribute to Pwned Passwords, a service used to help warn users against reusing passwords that have been leaked in data breaches, says Troy Hunt, the Australian developer who created Have I Been Pwned
Troy Hunt
The stolen and leaked data the FBI comes across in investigations - which usually would be kept secret - can now be utilized for active defense against account takeovers. It will help prevent bad outcomes stemming from the misuse of data obtained in data breaches.
The collaborative arrangement illustrates an evolving view that in addition to arrests and shutdowns, remediation is an important component of fighting cybercrime and fraud.
Last month, the FBI shared with HIBP the 4.3 million email addresses that had been harvested by the Emotet botnet, which was shut down in a global law enforcement action. It m ..
Support the originator by clicking the read the rest link below.
