Troy Hunt, creator of the website Have I Been Pwned (HIBP), announced that the FBI will soon share compromised passwords with HIBP’s “Pwned Passwords” service. The passwords the FBI will be sharing are those obtained through law enforcement investigations. The HIBP data breach notification site includes a service that allows for users to search for known compromised passwords. The goal is to further protect people from account takeovers by proactively warning them when a password has been compromised. According to Hunt, the passwords will be provided to HIBP in SHA-1 and NTLM hash pairs which is well aligned with the current storage constructs in Pwned Passwords.
By Anthony Zampino Introduction Leading up to the most recent Russian invasion of Ukraine in