The first thing hackers learn? Password cracking. And the first thing password crackers do? Try hashes from recent breaches. So it makes sense to prevent users from setting passwords to those found in, say, Troy Hunt’s list of 306 million. That’s been difficult to do. But I recently found PwnedPasswordsDLL, which adds a control to the password change process.
Checking for Breached Passwords in Active Directory
Watch more videos on my YouTube channel.