We have spoken a lot about security. One can never assume they’re completely immune from being compromised. Risk of social engineering, where hackers convince customer support to give them your password, is real. Hacks into a database could see millions of accounts stolen. Security breaches have happened before and are happen from time to time.
The question is, do you know if you have been pwned? Pwned is a term that means that you have an email and or password that have been compromised. The best way to figure out if you have been pwned is to visit the site HaveIBeenPwned.com
All sites listed are publicly notified websites. Hackers tend to publicize or sell the databases with username and passwords. The website obtains them to be able to report to you if you are compromised. You know what, Computerphile explains this perfectly in their video on this topic here:
Here are some disturbing facts from the website that will make you want to check it out now:
- 7,835,044,938 pwned accounts
- 354 websites are listed on their site as having been pwned
- There is even an API where you use a deep link with the website to educate new users to your website
For church tech people out there, put on your calendar every 3-6 months a recurring event to check every email address on your domain for your staff. Don’t wait to see if your Children’s Pastor does it, go look for yourself.
If you haven’t already, also listen to the podcast, “Have I Been Pwned?“
So, have you been pwned and is your ministry or organization in the clear?