Internet users are continually asked to trust tech companies with their data, but that trust isn't always rewarded. Massive data breaches regularly expose passwords, emails, and other personal information. Having your login data compromised is sometimes called “getting pwned”, and the sooner you know if you've been pwned the safer you'll be.
Apr 12, 2021 · 3 min read
Even if you don’t think that any of your account data has been leaked, we recommend checking it at Have I Been Pwned. The idea behind this service is pretty simple: enter your email address into the HIBP database of leaked passwords, and then the site will map the address across multiple data breaches to check if your data has been compromised.
If the address is discovered on one of the leaked data lists, the screen will turn red and HIBP will let you know on which breached site it was found. You can also be notified if your email address appears in any future breach data that HIBP finds.
The word “pwned” first appeared in the online gaming community and then spread out into the mainstream. “Pwn” is a misspelling of “own”, which means having a power or mastery over someone. However, it is also used in hacking contexts.
When somebody says “I got pwned”, it means that hackers stole their personal details. The word can also describe any illegal access to something, whether it’s your email, social media account, or any other service you use.
If your account has been pwned, act fast and take all necessary precautions to mitigate the damage. The longer you wait, the more risk you face of of losing access to your accounts.
When changing your password, use uppercase and lowercase letters, along with numbers and special characters. We recommend installing a password manager like NordPass, which will help you with this task.
NordPass generates complex passwords for you, securely stores them, and allows you to fill online forms with one click. It also has a feature called Data Breach Scanner, which notifies you if your credentials are leaked.
Don’t forget to use a unique password for each of your accounts. If you use the same password for multiple accounts, a hack on one profile can very quickly spread to others.
A password is not enough to stay secure online. Many digital services allow you to enable two-factor authentication (2FA), which adds an extra step when logging into your accounts. With 2FA enabled, after typing your password, you also have to authenticate yourself via a token, SMS, or app.
Even if hackers have stolen your password, they wouldn’t be able to bypass the 2FA.
Service providers do not always take the necessary measures to protect your personal information. They store poorly encrypted passwords in unsecured databases and sometimes they can be stolen without any prior hacking knowledge. However, there are things you can do yourself to enhance your digital security.
Want to read more like this?
Get the latest news and tips from NordVPN