The FBI is working with the Have I Been Pwned και του παραδίνει τους κωδικούς ασφαλείας που κατέχει στις βάσεις δεδομένων του και που έχουν διαρρεύσει. Επίσης η υπηρεσία ελέγχου του HIBP γίνεται open code.
Have I Been Pwned (HIBP), a website created and maintained by security researcher Troy Hunt, is one of top destinations to find out if email or code of your access, was part of a data breach.
Hunt, who is also Microsoft's regional security director, announced last night that makes the site open source so that other developers can contribute to the project and make it easier to find your compromised credentials. For the record, had announced his intention to sell it or make it available to other services.
As a first step, the Hunt Foundation and .NET are making the password module open source. The whole structure will not be done but only the password module. This page that essentially allows you να ελέγξετε εάν κάποιος από τους κωδικούς πρόσβασής σας ήταν μέρος leakageof data.
In addition, HIBP is working with the FBI, which will help strengthen the database with its own set of compromised codes.
The FBI will share the passwords as hash pairs SHA-1 and NTLM, which can then be searched for using the service or obtained as part of the Pwned Password list.
The Pwned module password allows users to download passwords that have been compromised as SHA-1 or NTLM password lists, and can be used offline by Windows administrators to check if they are being used on their network.
Νωρίτερα αυτήν την εβδομάδα, ο Hunt σημείωσε ότι ο ιστότοπος του HIBP πλησιάζει τα 1 δισεκατομμύριο μηνιαία αιτήματα για search διαρροών κωδικών πρόσβασης και ταυτότητας email.
