It seems like every day we read of a website that has been hacked, and had its users’ login details leaked. One of my favorite services, LastPass, now offers a service to help you discover if your information was leaked by a website. The service, LastPass Sentry, uses PwnedList to monitor whether your credentials have been stolen.
PwnedList finds and aggregates leaks as they occur, and currently has a database of 24 million publicly leaked usernames and passwords. LastPass Sentry performs a daily check of this service, and notifies you if your email address is on the list.
Right now, LastPass Sentry only works with the email address you use to log in to LastPass, but LastPass has plans to integrate the service into the LastPass Security Challenge, so a check can be performed of the entirety of your stored data.
If for some reason you don’t want LastPass to perform this check, you can opt out. Would you use it?