LulzSec hacks, the Gawker breach, and other database hacks recently have released a number of databases full of personal information, e-mail addresses, and account passwords into the public domain. A few sites have cropped up after the big releases to allow individuals to check if their accounts were included in the breach without having to download the .csv files themselves and search through that.
Accounts Tied To E-mail Addresses
The website ShouldIChangeMyPassword.com has created a form to search for your e-mail address through several of these databases.
After you do a search, you’ll receive feedback about how many times the e-mail address has been seen and when the most recent breach was.
The site currently checks across several recently released databases and plans to continue updating the site in the future.
As of June 25th 2011 there are just over 1 million records in the database but the intention is to keep updating in perpetuity.
Most likely the e-mail addresses are already public but you can read on the site’s FAQ page how it doesn’t record e-mail addresses submitted or keep the originally leaked databases, just hashes.
The same function has been created to see if a credit card has been stolen at IsMyCreditCardStolen.com. You just put in your card details and it will look it up.
If this doesn’t raise a red flag in your mind, you need to seek serious education on the topic of online security.