[deng]

BTW, since many people don't seem to be aware of this: If you have your own domain, you can get informed by haveibeenpwned automatically if any mail address from that domain is in a breach. All that is required is that you're reachable on that domain through an address like 'postmaster'. This feature can be found under 'domain search'. Since I use a new address for pretty much anything this is very handy.

[mysterypie]

I have a large list of unique emails to test, but they are not from a domain I control. It seems that I can test these through the API, but is there any simpler way? I tried obvious things like putting a list of comma-separated email addresses in the search form, but it doesn't work.

[numpad0]

Kinda lets adversaries figure which account used which password from which breach and until which point

[koheripbal]

Unfotunately, it no longer seems to list the impacted email addresses in those domains have been comprimised, so it's not too useful.

[Jestar342]

I've found it does list them if you request the full report, but that the initial email doesn't. (note the last time I used this functionality was about 3 weeks ago, I accept it may have changed since then)

[rpadovani]

Wow, thanks, I've never used the notification alert service since I use a custom email for every site I sign up.

That's cool, thanks!

[ohlookabird]

Wow, thanks so much, that's really helpful!

[pricechild]

That's a brilliant tip, thank you!