Troy Hunt

@troyhunt@infosec.exchange
21.4K Followers
53 Following
1.1K Posts
Creator of @haveibeenpwned. Microsoft Regional Director and MVP. Pluralsight author. Online security, technology and “The Cloud”. Australian.
Bloghttps://www.troyhunt.com
Troy Hunt2d ago
Weekly update is up! IoT all the things! A full walkthrough of all the connected stuff, warts and all. https://www.troyhunt.com/weekly-update-483/
Weekly Update 483

Building out an IoT environment is a little like the old Maslow's Hierarchy of Needs. All the stuff on the top is only any good if all the stuff on the bottom is good, starting with power. This week, I couldn't even get that right, but thankfully, sparky to rescue

Troy Hunt
Troy Hunt4d ago
Going live with my weekly vid in 10 minutes! IoT all the things! A full walkthrough of all the connected stuff, warts and all. https://youtube.com/live/M5eRKlOEhNw?feature=share
Weekly Update 483

YouTube
Troy Hunt4d ago
Big thanks to 1Password for sponsoring my blog this week! 1Password Extended Access Management: Secure every sign-in for every app on every device. https://1password.com/troyhunt
Enterprise Password Manager | 1Password

Secure sensitive data and combat shadow IT using 1Password, an enterprise password manager designed for effective team-wide password management and security.

Troy Hunt5d ago
Have I Been Pwned5d ago
New breach: French vehicle inspection company AUTOSUR had 10M records with 487k unique email addresses breached in March. Data also included name, address, phone and vehicle details. 78% were already in @haveibeenpwned. Read more: https://haveibeenpwned.com/Breach/AUTOSUR
Have I Been Pwned: AUTOSUR Data Breach

In March 2025, the French vehicle inspection company AUTOSUR suffered a data breach exposing over 10M customer records, though only 487k unique email addresses were present. The compromised data included names, phone numbers, physical addresses, and vehicle details such as make and model, VIN, and registration plate. AUTOSUR later issued a disclosure notice with further details.

Have I Been Pwned
Troy Hunt5d ago
Have I Been Pwned5d ago
New breach: Now defunct forum for making money with botting "The Botting Network" was breached in 2012, exposing 96k records. Data included email address, username, DoB and salted MD5 password hashes. 97% were already in @haveibeenpwned. Read more: https://haveibeenpwned.com/Breach/TheBottingNetwork
Have I Been Pwned: The Botting Network Data Breach

In August 2012, the forum for making money with botting "The Botting Network" suffered a data breach that exposed 96k user records. The now defunct vBulletin forum leaked 96k email addresses, usernames, dates of birth and salted MD5 password hashes.

Have I Been Pwned
Troy Hunt5d ago
Have I Been Pwned5d ago
New breach: In July 2016, the Web Hosting Talk vBulletin forum had 515k records breached. Data included email and IP address, username and salted Md5 password hash. 85% were already in @haveibeenpwned. Read more: https://haveibeenpwned.com/Breach/WebHostingTalk
Have I Been Pwned: Web Hosting Talk Data Breach

In July 2016, the Web Hosting Talk forum suffered a data breach that was subsequently listed for sale. The breach of the vBulletin based forum exposed 515k user records including usernames, email addresses, IP addresses and salted MD5 password hashes.

Have I Been Pwned
Troy Hunt6d ago
Weekly update is up! Spicers Pwned (and visited); 630 Million Passwords via the FBI; Qantas Breach Spam https://www.troyhunt.com/weekly-update-482/
Weekly Update 482

Perhaps it's just the time of year where we all start to wind down a bit, or maybe I'm just tired after another massive 12 months, but this week's vid is way late. Ok, going away to the place that had just been breached (ironic!) didn't help, but I think

Troy Hunt
Troy HuntDec 14
Going live with my weekly vid in 13 mins! Spicers Pwned (and visited); 630 Million Passwords via the FBI; Qantas Breach Spam https://youtube.com/live/LXDI04Q1nbU?feature=share
Weekly Update 482

YouTube
Troy HuntDec 12
We're very happy to help the FBI with processing another 630M passwords recently seized from a suspect. This includes 46M we'd never seen before, which are now all in @haveibeenpwned's Pwned Passwords, where they're queried 18 *billion* times a month: https://www.troyhunt.com/processing-630-million-more-pwned-passwords-courtesy-of-the-fbi/
Processing 630 Million More Pwned Passwords, Courtesy of the FBI

The sheer scope of cybercrime can be hard to fathom, even when you live and breathe it every day. It's not just the volume of data, but also the extent to which it replicates across criminal actors seeking to abuse it for their own gain, and to our detriment. We

Troy Hunt
Troy HuntDec 6
Have I Been PwnedDec 6
New breach: Russian streaming service KinoKong had over 800k records breached in March 2021. Data included email, name, username, IP address and MD5 password hash. 64% were already in @haveibeenpwned. Read more: https://haveibeenpwned.com/Breach/KinoKong
Have I Been Pwned: KinoKong Data Breach

In March 2021, the Russian online streaming service KinoKong suffered a data breach that was later redistributed as part of a larger corpus of data. The breach exposed over 800k unique email addresses along with names, usernames, IP addresses and MD5 password hashes.

Have I Been Pwned