Browse Definitions :
Definition

Have I Been Pwned (HIBP)

Contributor(s): Matthew Haughn

Have I Been Pwned (HIBP) is a website that allows users to search and find out if an email address’s password has been compromised by data breaches. The service is a popular and commonly-used tool in IT security.

As a database service compiled from known leak sites, the service allows users to quickly check to see if a particular email account has been compromised by a data breach. The database is compiled from crawls of a number of websites and database dumps. Some of these sites are believed to purchase account information from hackers.

HIBP was created after a large data breach at Adobe in October 2013. Since the site’s creation, HIBP has become legitimized as a security tool by tech-savvy users to keep their information safe.  Corporations trying to assist users after data breaches also sometimes offer HIBP links in notification emails.

Have I Been Pwned was created and independently run by Troy Hunt, a Microsoft Regional Director. In June 2018, it was announced that HIBP had partnered with Mozilla Firefox and 1Password to integrate the service into new products.

Pwn is a hacker/gamer variation on the word own and a leet speak term meaning to defeat overwhelmingly or to dominate.

This was last updated in September 2018

Continue Reading About Have I Been Pwned (HIBP)

Join the conversation

1 comment

Send me notifications when other members comment.

Please create a username to comment.

To be honest I didn't about know about this site before. But today I heard that hundreds of million emails and passwords have been hacked and shared it on a famous hacking site.

Obviously I was curious that whether my email has been compromised or not. So, I start digging my site and fortunately came to know about HIBP via reading your article. 

I think this was the great step of Troy Hunt to start this type of website. Cyber attacks are increasing day by day and it seems that no one is safe. 

Hope more security measures will be taken by major sites owners to avoid any data breach.
Cancel

-ADS BY GOOGLE

File Extensions and File Formats

SearchCompliance

SearchSecurity

  • time-based one-time password (TOTP)

    A time-based one-time password (TOTP) is a temporary code, generated by an algorithm, for use in authenticating access to ...

  • Security Operations Center (SOC)

    A security operations center (SOC) is a command center facility for a team of IT professionals with expertise in information ...

  • incident response team

    An incident response team is a group of IT professionals in charge of preparing for and reacting to any type of organizational ...

SearchHealthIT

SearchDisasterRecovery

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

  • business continuity software

    Business continuity software is an application or suite designed to make business continuity planning/business continuity ...

SearchStorage

  • storage class memory (SCM)

    Storage class memory (SCM) is a type of NAND flash that includes a power source to ensure that data won't be lost due to a system...

  • Hadoop as a service (HaaS)

    Hadoop as a service (HaaS), also known as Hadoop in the cloud, is a big data analytics framework that stores and analyzes data in...

  • blockchain storage

    Blockchain storage is a way of saving data in a decentralized network which utilizes the unused hard disk space of users across ...

Close