Wednesday, 22 December 2021

UK donates 225 million stolen passwords to hack-checking site

UK law enforcement has donated a tranche of 225 million unique passwords to a cyber-security project helping to protect users from hacking.

The National Crime Agency (NCA) recovered the database from cyber-criminals who had collected real users' email addresses and passwords.

That list has been added to free online service Have I Been Pwned (HIBP).

It lets anyone search through hundreds of millions of passwords to see if theirs is in the hands of criminals.

Troy Hunt, the security researcher who runs the site, announced on Friday that it now has a "pipeline" function for law enforcement to add passwords they have recovered to the service.

"The premise is simple," he wrote in a blog post.

"During the course of their investigations, they come across a lot of compromised passwords, and if they were able to continuously feed those into HIBP, all the other services out there using Pwned passwords would be able to better protect their customers from account takeover attacks."

An account takeover attack is when a hacker gains the username and password for an online service and is able to take control of it.

Source: BBC News

House fire - Erith 🔥

Firefighters are issuing a reminder about using candles safely after a house fire on Bridge Road in Erith. Half of the first floor of the tw...