Warn if a password has been "pwned" (compromised) with Have I Been Pwned API v2
Troy Hunt (haveibeenpwned.com) has a new API that allows passwords to be checked against a massive database of passwords contained in leaks. It would be great to get a notice that a password is contained in this database when entering it.
Great Idea! Please implement!
Stephen Morris commented
This feature is pretty widely available on other similar tools now. Would be awesome to see in in Safe In Cloud.
Connor Hatch commented
Wes, I don't know what to say. The site is owned & operated by Troy Hunt, & I think I would just about trust him with my life. Also, if you think 'pwned' is used to collect passwords from its users, you already have a fundamental misunderstanding of the service & its use cases.
Wes Hardin commented
How do we know that this pwned isn't just a massive password collection scam??