Google Chrome extension Automatically Checks Whether User Passwords have been Exposed
Google introduced a new Chrome extension which will automatically and securely check whether user passwords have been exposed in a data breach.Google Chrome extension Automatically Checks Whether User Passwords have been Exposed
Google’s new extension informs you if your password has been stolen
Called Password Checkup, the Chrome extension is Google’s attempt to address the problem of password reuse on the Web. When the user attempts to log in to a website or application via the Chrome browser, the extension checks the password against an internal Google database containing billions of already-compromised login credentials. If the password has been compromised, the user will be alerted and prompted to create a new password.
“If we detect that a username and password on a site you use is one of over 4 billion credentials that we know have been compromised, the extension will trigger an automatic warning and suggest that you change your password,” wrote Google research scientist Kurt Thomas and product manager Adam Dawes in the announcement.
Google said most U.S. websites are supported.
In the event of a data breach where passwords are stolen, users who already use unique passwords for each web application or service have less to worry about compared to those who reuse passwords. All they have to do is change that one password. Reusing passwords means having to change the password for every site that used the now-breached password.
Attackers take credentials stolen in data breaches and try to use them on popular online services, such as email, social media, retail, and financial services accounts to see if they can get access. The more places a password is used, the more likely these attackers will succeed in their attempts.