A security researcher has released an updated list of 500 million breached passwords so that organizations can use it to protect their systems.
On 22 February, Australian web security expert Troy Hunt published the second version of “Pwned Passwords.” The feature enables users to check a new or used password against a list of 501,636,842 combinations previously compromised by data breaches. In so doing, organizations can leverage the feature to ensure users are choosing secrets that are unaffected by any known security incidents.
People can either download the entire list or use an online search tool to verify their passwords. If they choose the latter, the utility will notify users if their password is contained in the list. It will also display a number that indicates how many times the service found their secret across the various data sources of which it consists.