68k Phishing Victims are Now Searchable in Have I Been Pwned, Courtesy of CERT Poland – Source: www.troyhunt.com

Source: www.troyhunt.com – Author: Troy Hunt Last week I was contacted by CERT Poland. They’d observed a phishing campaign that had collected 68k credentials from unsuspecting victims and asked if HIBP may be used to help alert these individuals to their exposure. The...

Data From The Qakbot Malware is Now Searchable in Have I Been Pwned, Courtesy of the FBI – Source: www.troyhunt.com

Source: www.troyhunt.com – Author: Troy Hunt Today, the US Justice Department announced a multinational operation involving actions in the United States, France, Germany, the Netherlands, and the United Kingdom to disrupt the botnet and malware known as Qakbot and...

Fighting API Bots with Cloudflare’s Invisible Turnstile – Source: www.troyhunt.com

Source: www.troyhunt.com – Author: Troy Hunt There’s a “hidden” API on HIBP. Well, it’s not “hidden” insofar as it’s easily discoverable if you watch the network traffic from the client, but it’s not meant to be called directly, rather only via the web app. It’s...