Just got this from @haveibeenpwned and, honestly I hate it. - service I never used - it’s a threat intel company - 2 billion emails (and some pw) Is it recent data? If I auto generate a list of every possible email ever (and maybe some bogus passwords) do we notify everyone?
13
8
3
125
troyhunt.com/2-billion-email… please read this and reevaluate your statement

2 Billion Email Addresses Were Exposed, and We Indexed Them All in Have I Been Pwned

I hate hyperbolic news headlines about data breaches, but for the "2 Billion Email Addresses" headline to be hyperbolic, it'd need to be exaggerated or overstated - and it isn't. It's rounded up from...

troyhunt.com
1
3
So I’m going to take this breach, and generate a list of every possible email address ever. Then I’ll include this breach, and add randomly generated passwords or copy others into emails that don’t have a password in this breach. This would then cause a breach notification for every single email address ever created. Reasonable?
2
12