When I enter my former widely known email address into haveibeenpwned.com/, it lists eight breaches where my data was supposedly compromised – including services that I never registered with. I guess that these services didn’t bother validating the email address?


Not that their data is anywhere near exhaustive. A while back I started creating aliases for each communication partner. I know for a fact that a few of these aliases have been compromized. Yet haveibeenpwned.com/ doesn’t list any breaches for my domain.

· · Web · 0 · 0 · 1
Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.