Profile avatar
troyhunt.com
Creator of Have I Been Pwned. Microsoft Regional Director. Pluralsight author. Online security, technology and “The Cloud”. Australian.
229 posts 14,774 followers 32 following
Prolific Poster
Conversation Starter
Posts 39 Comments 11

Really appreciate and respect @troyhunt.com's transparency with his phishing mishap, and this post as a lot of us struggle to shift to passkeys, even though we know they're good for us. www.troyhunt.com/passkeys-for... #cybersecurity @gate15.bsky.social

submitted 1 day ago • 0 comments

I recently had a great meetup with @ncsc.gov.uk largely discussing the importance of passkeys. "I should write up a blog post for normal people", I suggested, then went back to my hotel and got phished 🤦‍♂️ Finally, here's that blog post: www.troyhunt.com/passkeys-for...

submitted 1 day ago • 1 comment

Weekly update is up! NDC Melbourne; The Have I Been Pwned Challenge Coin; Sneaky Facebook Phish Catches a Click www.troyhunt.com/weekly-updat...

submitted 4 days ago • 0 comments

It's time for a European road trip to visit a bunch of the partners who've been working with @haveibeenpwned.com over the years! Here's what's on the cards for June: www.troyhunt.com/the-have-i-b...

submitted 4 days ago • 5 comments

Going live with my weekly update in 20 minutes! NDC Melbourne; The Have I Been Pwned Challenge Coin; Sneaky Facebook Phish Catches a Click youtube.com/live/92H-BKo...

submitted 5 days ago • 0 comments

New breach: Hungarian education office website TehetségKapu had almost 55k records breached in March. Data included email address, name and username. 32% were already in @haveibeenpwned.com. Read more: 444.hu/2025/03/27/5...

submitted 5 days ago • 1 comment

Big thanks to Malwarebytes for sponsoring my blog this week! Malwarebytes Browser Guard blocks phishing, ads, scams, and trackers for safer, faster browsing www.malwarebytes.com/browserguard...

submitted 5 days ago • 0 comments

Big welcome to the Gambia National CSIRT onto @haveibeenpwned.com, they now have full and free access to search Gambian government domains: www.troyhunt.com/welcoming-th...

submitted 6 days ago • 0 comments

Working on the @haveibeenpwned.com challenge coin, are we on the right track? Other side would be much more formal (new logo), what would you like to see?

submitted 9 days ago • 11 comments

Weekly update is up! How Fast is Too Fast for an API; Sign in Versus "The Others"; More HIBP UX Goodness www.troyhunt.com/weekly-updat...

submitted 9 days ago • 0 comments

Big thanks to @1password.bsky.social for sponsoring my blog this week! 1Password Extended Access Management: Secure every sign-in for every app on every device. 1password.com/troyhunt

submitted 11 days ago • 0 comments

Going live with my weekly update in 15 mins! How Fast is Too Fast for an API; Sign in Versus "The Others"; More HIBP UX Goodness youtube.com/live/fbZMu6A...

submitted 12 days ago • 0 comments

Don't miss out on @troyhunt.com and 65 other amazing speakers at NDC Melbourne NEXT WEEK! See the full agenda and get your tickets at ndcmelbourne.com

submitted 15 days ago • 0 comments

Weekly update is up! Home For Good; LabHost Takedown and 250k More Pwned Passwords; Samsung Germany Data Breach; The New HIBP Personal Breach Page www.troyhunt.com/weekly-updat...

submitted 15 days ago • 0 comments

Going live with my weekly vid in 25 mins! Home For Good; LabHost Takedown and 250k More Pwned Passwords; Samsung Germany Data Breach; The New HIBP Personal Breach Page: youtube.com/live/mDc0CJ1...

submitted 16 days ago • 1 comment

It’s not a real data breach unless it causes people serious harm. Words to that effect are rife throughout privacy reforms that continue to prioritise the responsible organisation over the impacted individuals www.ashurst.com/en/insights/...

submitted 16 days ago • 7 comments

Big thanks to @1password.bsky.social for sponsoring my blog this week! 1Password Extended Access Management: Secure every sign-in for every app on every device. 1password.com/troyhunt

submitted 17 days ago • 0 comments

Great outcome by our global law enforcement partners, that's some big numbers: "at least 40,000 phishing domains linked to LabHost, which had some 10,000 users worldwide". Let's make those phished passwords useless, they're now all in @haveibeenpwned.com: www.europol.europa.eu/media-press/...

submitted 17 days ago • 2 comments

10 years of independence today. Worked out awesome 😎 www.troyhunt.com/today-marks-...

submitted 21 days ago • 0 comments

Standing room only at the Microsoft Student Accelerator Meetup last night in Perth 😎

submitted 21 days ago • 1 comment

New breach: Samsung Germany had 216k unique email addresses exposed due to a compromise of their logistics provider, Spectos. Data included name, physical address, purchases and shipping tracking numbers. 49% were already in @haveibeenpwned.com. Read more: www.infostealers.com/article/sams...

submitted 24 days ago • 0 comments

If you’re in Perth on Monday, get along to my *free* talk at the Microsoft Student Accelerator! It says “student”, but it’s open to all. Will have heaps of brand new shiny @haveibeenpwned.com stickers with me 😊 www.meetup.com/anz-microsof...

submitted 24 days ago • 1 comment

Weekly update is up! I'm Back Home; Perth Event Next Week; Partner Placement in Have I Been Pwned; The New UX is Looking *Amazing*! www.troyhunt.com/weekly-updat...

submitted 24 days ago • 1 comment

We're now serving well over 12 *BILLION* requests every month from Pwned Passwords 😲 And we served 99.97% of those requests from one of 335 Cloudflare edge nodes around the world. This service totally rocks 😎

submitted 24 days ago • 2 comments

Continuing the @haveibeenpwned.com UX rebuild discussion, how can we add some life into the "pwned" versus "not pwned" results? Chime in on this discussion with your ideas: github.com/HaveIBeenPwn...

submitted 24 days ago • 0 comments

Going live with my weekly update in 45 mins! I'm Back Home; Perth Event Next Week; Partner Placement in Have I Been Pwned; The New UX is Looking *Amazing*! youtube.com/live/qrWwdIX...

submitted 25 days ago • 0 comments

Big thanks to Malwarebytes for sponsoring my blog this week! Malwarebytes Browser Guard blocks phishing, ads, scams, and trackers for safer, faster browsing: www.malwarebytes.com/browserguard...

submitted 25 days ago • 0 comments

I'm looking for some contacts at companies that provide identity protection services, any followers out there? Further, have you had good experiences with any specific companies? There are some product placement opportunities we're exploring in the updated @haveibeenpwned.com site.

submitted 26 days ago • 0 comments

New breach: Indonesian restaurant website Qraved had almost 1M email addresses breached in 2021. Data also included name, phone, DoB and MD5 password hash. 83% were already in @haveibeenpwned.com. Read more: cybernews.com/security/bil...

submitted 27 days ago • 0 comments

New breach: French electronics retailer Boulanger had 967k email addresses breached in September. Data also included name, physical address, phone number and lat and long. 65% were already in @haveibeenpwned.com. Read more: therecord.media/france-retai...

submitted 28 days ago • 1 comment

Geez Ireland! 😍

submitted 30 days ago • 2 comments

Weekly update is up! I’m in Ireland; Dealing with the Phish Fallout; HIBP UX Rebuild Task List; Sponsored by Malwarebytes www.troyhunt.com/weekly-updat...

submitted 31 days ago • 3 comments

Going live with my weekly vid in 10 mins! I’m in Ireland; Dealing with the Phish Fallout; HIBP UX Rebuild Task List www.youtube.com/live/zqQBOOe...

submitted 32 days ago • 0 comments

Big thanks to Malwarebytes for sponsoring my blog this week Malwarebytes Browser Guard blocks phishing, ads, scams, and trackers for safer, faster browsing www.malwarebytes.com/browserguard...

submitted 33 days ago • 0 comments

New breach: German Doner Kebab had 162k unique email addresses publicly posted to a hacking forum last week. Data also included name, phone and physical addrress. 74% were already in @haveibeenpwned.com. Read more: x.com/DarkWebInfor...

submitted 37 days ago • 2 comments

Weekly update is up! Coming to you live from Iceland, this week, it's all about how I got phished www.troyhunt.com/weekly-updat...

submitted 37 days ago • 1 comment

I’m live!

submitted 38 days ago • 0 comments

Going live with my weekly vid in 30 mins (this replaces the previously shared link): Coming to you live from Iceland, this week, it's all about how I got phished www.youtube.com/live/YKed0Hx...

submitted 38 days ago • 1 comment

Scams, deception and misrepresentation are absolutely everywhere. Who can see what’s going on here in the legitimate YouTube app?

submitted 38 days ago • 2 comments