Browse Definitions :
Definition

Have I Been Pwned (HIBP)

Contributor(s): Matthew Haughn

Have I Been Pwned (HIBP) is a website that allows users to search and find out if an email address’s password has been compromised by data breaches. The service is a popular and commonly-used tool in IT security.

As a database service compiled from known leak sites, the service allows users to quickly check to see if a particular email account has been compromised by a data breach. The database is compiled from crawls of a number of websites and database dumps. Some of these sites are believed to purchase account information from hackers.

HIBP was created after a large data breach at Adobe in October 2013. Since the site’s creation, HIBP has become legitimized as a security tool by tech-savvy users to keep their information safe.  Corporations trying to assist users after data breaches also sometimes offer HIBP links in notification emails.

Have I Been Pwned was created and independently run by Troy Hunt, a Microsoft Regional Director. In June 2018, it was announced that HIBP had partnered with Mozilla Firefox and 1Password to integrate the service into new products.

Pwn is a hacker/gamer variation on the word own and a leet speak term meaning to defeat overwhelmingly or to dominate.

This was last updated in September 2018

Continue Reading About Have I Been Pwned (HIBP)

Join the conversation

1 comment

Send me notifications when other members comment.

Please create a username to comment.

To be honest I didn't about know about this site before. But today I heard that hundreds of million emails and passwords have been hacked and shared it on a famous hacking site.

Obviously I was curious that whether my email has been compromised or not. So, I start digging my site and fortunately came to know about HIBP via reading your article. 

I think this was the great step of Troy Hunt to start this type of website. Cyber attacks are increasing day by day and it seems that no one is safe. 

Hope more security measures will be taken by major sites owners to avoid any data breach.
Cancel

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • compliance audit

    A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

  • regulatory compliance

    Regulatory compliance is an organization's adherence to laws, regulations, guidelines and specifications relevant to its business...

  • Whistleblower Protection Act

    The Whistleblower Protection Act of 1989 is a law that protects federal government employees in the United States from ...

SearchSecurity

  • payload (computing)

    In computing, a payload is the carrying capacity of a packet or other transmission data unit. The term has its roots in the ...

  • passphrase

    A passphrase is a string of characters longer than the usual password (which is typically from four to 16 characters long) that ...

  • Web application firewall (WAF)

    A Web application firewall (WAF) is a firewall that monitors, filters or blocks traffic to and from a Web application. WAFs are ...

SearchHealthIT

SearchDisasterRecovery

SearchStorage

  • computational storage

    Computational storage is defined as an architecture that couples compute with storage in order to reduce data movement. In doing ...

  • data deduplication

    Data deduplication -- often called intelligent compression or single-instance storage -- is a process that eliminates redundant ...

  • public cloud storage

    Public cloud storage, also called storage-as-a-service or online storage is a service model that provides data storage on a ...

Close