Passwords are what give you personal access to your own accounts and data online, from banking applications to social media accounts. Unfortunately, it is very common for data breaches to occur. As our internet activity increases, so do cyber crimes. They make anyone using the internet at risk of being hacked. But what is a password breach and is it possible to protect yourselves from such data breaches?
What is Breached Password Detection
Form of attack protection in which Auth0 notifies your users if they use a username/password combination that has been compromised in a data leak on a third-party website or app. Breached Password Detection protects your applications from bad actors signing up or logging in with stolen credentials. Auth0, RAE's MFA Login provider, tracks large security breaches that occur on major third-party sites. If Auth0 identifies that your credentials were part of a breach, the breached password detection security feature triggers.
In response, Auth0 will:
If you do receive an alert from Auth0 and RAE, to safeguard your digital security we advise you to follow these steps:
1. Change your password: Go to the affected website or service and change your password immediately. Avoid reusing old passwords and ensure your new password is unique and strong, consisting of a combination of upper and lowercase letters, numbers, and special characters.
2. Enable two-factor authentication (2FA) on other accounts: Whenever available, enable 2FA for your accounts. This provides an additional layer of security and helps prevent unauthorized access.
3. Review other accounts: It is crucial to review all your online accounts, especially those where you have used the same or similar password. Change the passwords on those accounts as well and enable 2FA whenever possible.
4. Be cautious of phishing attempts: Stay vigilant for any suspicious emails, messages, or calls requesting personal information or login credentials. Be cautious and verify the authenticity of such requests before responding or providing any sensitive data.
5. Monitor your accounts: Regularly monitor your financial accounts, credit reports, and other sensitive online platforms to detect any unusual activity promptly. Report any suspicious activity to the respective service providers or financial institutions.
These materials and any recommendations within are not legal, privacy, security, compliance, or business advice. These materials are intended for general informational purposes only and may not reflect the most current security, privacy, and legal developments nor all relevant issues. You are responsible for obtaining legal, security, privacy, compliance, or business advice from your own lawyer or other professional advisor and should not rely on the recommendations herein. Okta is not liable to you for any loss or damages that may result from your implementation of any recommendations in these materials. Okta makes no representations, warranties, or other assurances regarding the content of these materials. Information regarding Okta's contractual assurances to its customers can be found at Okta Agreement.