Mozilla to embed Have I Been Pwned in new security system

The tool will use Troy Hunt's system to detect accounts embroiled in known data breaches

Mozilla has just unveiled an exciting new upgrade set to debut in future versions of Firefox: a security tool driven by Troy Hunt's "Have I Been Pwned" (HIBP) database.

The overhaul is not unprecedented - back in November 2017, the company announced it would inform users when their accounts had been breached by using the accessible breach API on HIPB. However, this meant users were only notified as and when they visited a breached site. Until now. Mozilla's new system will fully integrate Hunt's lauded HIBP tool into an entirely new site, the ominously named but well-intentioned Firefox Monitor.

The new secondary website will permit users to enter an email address into the database, in order to glean not just whether or not their account was part of a data breach, but if so, to what extent. What's more, users will be offered tailored security recommendations in order to help them shore up their account security.

As a cautionary measure, the tool is being extended to around 250,000 primarily US users, although will no doubt face expansion if well-received. It's a work-in-progress as of yet, and Mozilla is collaborating with HIBP and Cloudflare in order to conceive a method of anonymous data sharing in a bid to ensure ethical data handling and respect of users' privacy.

For his part, Hunt seems enthusiastic. In a blog post entitled "We're Baking Have I Been Pwned into Firefox and IPassword", he said: "This is major because Firefox has an install base of hundreds of millions of people which significantly expands the audience that can be reached once this feature rolls out to the mainstream."

Meanwhile, Mozilla stressed the necessity of such a tool: "From shopping to social media, the average online user will have hundreds of accounts requiring passwords," company spokesperson Peter Dolanjski asserted in a blog post. "At the same time, the number of user data breaches occurring each year continues to rise dramatically [...] We decided to address a growing need for account security by developing Firefox Monitor."

Worried about your increasingly unwieldy portfolio of online accounts? You're certainly not alone. If you can't wait to find out if your passwords are safe, you could just visit the site without Firefox, of course.

Featured Resources

Defeating ransomware with unified security from WatchGuard

How SMBs can defend against the onslaught of ransomware attacks

Free download

The IT expert’s guide to AI and content management

How artificial intelligence and machine learning could be critical to your business

Free download

The path to CX excellence

Four stages to thrive in the experience economy

Free download

Becoming an experience-based business

Your blueprint for a strong digital foundation

Free download

Recommended

Senate report slams agencies for poor cyber security
cyber security

Senate report slams agencies for poor cyber security

3 Aug 2021
Most employees put their workplace at risk by taking cyber security shortcuts
cyber security

Most employees put their workplace at risk by taking cyber security shortcuts

27 Jul 2021
61% of organizations say improving security a top priority for 2021
cyber security

61% of organizations say improving security a top priority for 2021

29 Jun 2021
ProtectedBy.AI’s CodeLock blocks malware at source code level
software as a service (SaaS)

ProtectedBy.AI’s CodeLock blocks malware at source code level

9 Jun 2021

Most Popular

What are the pros and cons of AI?
machine learning

What are the pros and cons of AI?

8 Sep 2021
Citrix mulling potential sale after tumultuous 2021
mergers and acquisitions

Citrix mulling potential sale after tumultuous 2021

15 Sep 2021
Zoom: From pandemic upstart to hybrid work giant
video conferencing

Zoom: From pandemic upstart to hybrid work giant

14 Sep 2021