Forum Discussion
Chromium Testing "Password Leak Detection" (Not In Edge Yet)
How it works:
Once enabled, Google Chrome will then show you if the password you enter into a website matches information Google has on public data breaches. This feature will only be available for users who are signed into their Google account, but it can help millions of people. If Google Chrome detects the user entering a compromised password, they will be shown a pop-up prompt that tells the user this password has been found in the public list of unsafe passwords.
The Password Leak Detection feature that was added to Chrome 78 Canary is headed to Android as well.
This website does the same thing:
https://haveibeenpwned.com/Passwords
It's an interesting feature. Might be an eventual good one for Edge too (except through Microsoft syn/accounts instead of Googles accounts).
I checked Chrome Canary app on Android and it's not in the flags yet. That too will be intersting to see.
- I doubt its effectiveness though. what are the chances that someone who hacks a server post those passwords in public?
or even when they put it up for sale on torrent or dark web, Google goes and buys a copy from the hacker and then integrate it into their system?About zero. Those into cracking password or servers or into warez (software piracy) wouldn't be dense enough to post those passwords publicly unless they were complete amateurs. Even on some of the darknet sites or Tor sites they're not going to openly advertise or distribute them. The password leak detection probably is a good backup option/alternative and still a neat concept however as always people should be careful with their password and data information and how they process or input it on the internet as even securited sites . Unless Google has a secret method of obtaining those leaked passwords that no one else knows about.
