Forum Discussion

Suhrid_Palsule's avatar
Suhrid_Palsule
Icon for Microsoft rankMicrosoft
Jun 24, 2020

Use Password Monitor to help protect your passwords online

Note: We are in the process of deploying this feature, so it may be a little while before you see it in your respective channel and build.   Each year, hundreds of millions of usernames and passw...
rshupak's avatar
rshupak
Iron Contributor
Oct 17, 2020

Suhrid_Palsule I am months late in responding to this, so apologies.  Why are the requests to https://edge.microsoft.com/passwordbreach/api/v1 authenticates with a bearer token associated with my account?  Doesn't this increase the risk that the information could be associated with me personally?

 

Rich

Suhrid_Palsule's avatar
Suhrid_Palsule
Icon for Microsoft rankMicrosoft
Dec 01, 2020

rshupak 

Bearer token authentication is because this feature is available only for signed in users. As far as privacy concerns go, adequate protections are in place to ensure that neither Microsoft nor any other party can get any new information about you from this check. We hope to share more details on the way this check is completed with you in the near future. Thanks!

Resources