Enhance the "an address has been breached" email notification to include the address
I run a domain which is used for email filtering. It employs "catch-all" forwarding to route every message to one of two places:
1) Trash, for addresses that are only getting SPAM (from previous data breaches)
2) my inbox, for the unique email address I provide for each web site I register with
This means I have hundreds of email addresses registered (probably close to 1000). They're all me.
However, since 63 of my email addresses have been disclosed to HIBP as being involved in data breaches, I no longer have any way to find out which addresses have been breached.
A subscription seems to be designed for companies, I'm looking for a model that works for my individual person who uses lots of email addresses use case.
Suggestions are welcome
Ralph H
shared this idea
The reason we don't include the impacted addresses is that they can be considered sensitive info therefore we don't want to send this via email. The result size can also be quite large for big orgs in large breaches.
If you've just got a big personal domain, log a ticket here with further details and we can assist: https://support.haveibeenpwned.com/hc/en-au