How do I really know my passwords have been compromised?

Whether this was a scam or not? Donno.

Some organizations do tie into available services to look for password breaches.

Facebook had reportedly implemented this check.

Other folks post up scary messages to scam folks.

It’s probable that you’ve had passwords exposed. Most of us have.

If you’ve not used unique passwords, there can be problems awaiting.

There are folks actively looking for logins using your email and old and breached passwords.

Here’s a service that looks up how widespread your email—which is usually your login on most services—has been exposed:

https://haveibeenpwned.com/

This service may well be what the report is based on, too.

And if you’ve been re-using passwords, well, these leaked passwords are being used by attackers.

BobTheFisherman wrote:

Do you really think that if a browser popup says your passwords are compromised and to change all your passwords that it may not be a scam?

It wouldn’t surprise me to see Chrome or another web browser implement this feature.

From a random web site or from a random pop-up, maybe or probably not.

Depends on the website, if it’s not Chrome itself issuing a message—and I don’t use Chrome.

Competently-built add-on security—yeah, there’s a lot of trash in that market—may well implement this, too.

Again, some web sites and some services do verify these credentials.

Whether this case is a scam or not, I do not know.

I would check the password regardless.

Because leaked passwords are getting crammed into logins all over the ‘net.

ps: Safari has a handy feature to detect password reuse, for instance.

It's a scam. Do not click on any of the links they want you to click on to change passwords.

If you are concerned then go directly to your accounts and change your passwords there.

Do you really think that if a browser popup says your passwords are compromised and to change all your passwords that it may not be a scam?