RunAs Radio

HaveIBeenPwned with Troy Hunt

Oct 1, 2025
In this engaging discussion, Troy Hunt, an internet security expert and the creator of Have I Been Pwned, reveals the importance of breach awareness and password management. He explains how his service notifies users of compromised accounts, which can mitigate risks for both individuals and organizations. Troy also delves into the motivations behind data sharing from researchers and criminals, the regulatory landscape regarding breach notifications, and the challenges companies face post-breach. With insight into password security and the value of adopting password managers, this conversation is a treasure trove of information for anyone concerned about online safety.
Ask episode
AI Snips
Chapters
Transcript
Episode notes
INSIGHT

Service Began As Public Education

  • Have I Been Pwned started as a consumer education tool and remains focused on raising awareness about breached accounts.
  • Troy Hunt emphasizes that even tech-savvy people often only realize risks after using the service.
INSIGHT

Many Breaches Come From Youths

  • Most data circulated publicly originates from young offenders or hobbyist hackers rather than nation-states.
  • Troy Hunt notes many breaches are redistributed by teenagers or gray-hat collectors, not just sophisticated actors.
ANECDOTE

Hackers Seek Validation

  • Attackers sometimes send breach data to Have I Been Pwned for validation or prestige in hacker communities.
  • Troy explains this creates a tension between validating data and not incentivizing criminals.
Get the Snipd Podcast app to discover more snips from this episode
Get the app