Weekly Update 499 Introducing “Bruce the Bot”, our 51c per day OpenClaw-powered humanoid-assisted Zendesk AI agent for Have I Been Pwned

Going live with my weekly vid in 10 mins! Introducing “Bruce the Bot”, our 51c per day OpenClaw-powered humanoid-assisted Zendesk AI agent for Have I Been Pwned: youtube.com/live/TSJ_bXb...

Have I Been Pwned: My Lovely AI Data Breach In April 2026, the NSFW AI girlfriend platform My Lovely AI suffered a data breach that exposed over 100k users. The data included user-created prompts and links to the resulting AI-generated images, ...

New breach: My Lovely AI, a NSFW AI girlfriend platform, suffered a breach earlier this week that exposed over 100k unique email addresses. The data also included AI prompts and links to the resulting images. 23% were already in @haveibeenpwned. More: haveibeenpwned.com/Breach/MyLov...

Weekly Update 498 This week, more time than I'd have liked to spend went on talking about the trials of chasing invoices. This is off the back of a customer (who, for now, will remain unnamed), who had invoices…

Weekly update is up! The Challenges of Running Your Own Business; Here’s All the New Features We Just Launched on Have I Been Pwned www.troyhunt.com/weekly-updat...

Have I Been Pwned: SongTrivia2 Data Breach In April 2026, the music trivia platform SongTrivia2 suffered a data breach that was subsequently published to a public hacking forum. The data contained a total of 291k unique email addresses sourced...

New breach: SongTrivia2 had 291k unique email addresses breached this week. Data included name, username, avatar and, where Google auth wasn't used, bcrypt password hash. 45% were already in @haveibeenpwned.com. Read more: haveibeenpwned.com/Breach/SongT...

Weekly Update 498 The Challenges of Running Your Own Business; Here’s All the New Features We Just Launched on Have I Been Pwned

Going live with my weekly vid in 10 mins! The Challenges of Running Your Own Business; Here’s All the New Features We Just Launched on Have I Been Pwned youtube.com/live/kyBA5Oh...

Have I Been Pwned: SUCCESS Data Breach In March 2026, the personal development and achievement media brand SUCCESS suffered a data breach. The incident exposed 250k unique email addresses along with names, IP addresses, phone numbers and, ...

New breach: SUCCESS suffered a breach last month that exposed 250k unique email addresses. Data also included name, phone number, IP address and purchase with physical address. 80% were already in @haveibeenpwned.com. Read more: haveibeenpwned.com/Breach/SUCCESS

Weekly Update 497 Day by day, I find we're eeking more goodness out of OpenClaw and finding the sweet spot between what the humans do well and the agent can run off and do on its own. Significantly, we're shifting…

Weekly update is up! Join Me in Investigating Today’s Data Breaches With the PwnedClaw, the OpenClaw Agentic AI Bot Doing My Legwork: www.troyhunt.com/weekly-updat...

HIBP Mega Update: Passkeys, k-Anonymity Searches, Massive Speed Enhancements and a Bulk Domain Verification API For a hobby project built in my spare time to provide a simple community service, Have I Been Pwned sure has, well, "escalated". Today, we support hundreds of thousands of website visitors each day, t...

Today, after many months of hard work, we're launching a bunch of new @haveibeenpwned.com features that improve privacy, usability and performance. We're a little team, but we've done a lot since this pic in November. Here are all the details: www.troyhunt.com/passkeys-k-a...

Weekly Update 497 Join Me in Investigating Today’s Data Breaches With the PwnedClaw, the OpenClaw Agentic AI Bot Doing My Legwork

Going live with my weekly vid in 5 minutes! Join Me in Investigating Today’s Data Breaches With the PwnedClaw, the OpenClaw Agentic AI Bot Doing My Legwork youtube.com/live/HQYSfsz...

Have I Been Pwned: BreachForums Verion 5 Data Breach In March 2026, a breach of one of the many iterations of the BreachForums hacking forum known as "Version 5" was publicly disclosed. The incident exposed 340k unique email addresses along with usernam...

New breach: Today, a breach of one of the iterations of the BreachForums hacking forum known as "version 5" was publicly disclosed. Data included 340k unique email addresses, usernames and argon2 password hashes. 96% were already in @haveibeenpwned.com . More: haveibeenpwned.com/Breach/Breac...

Have I Been Pwned: Scuf Gaming Data Breach In June 2015, custom gaming controller maker Scuf Gaming suffered a data breach. The incident exposed 129k unique email addresses along with usernames, display names, IP addresses and password hashes.

New breach: In 2015, custom gaming controller maker Scuf Gaming suffered a breach that exposed 129k email addresses. Data also included username, display name, IP address and password hash. 88% were already in @haveibeenpwned.com. Read more: haveibeenpwned.com/Breach/ScufG...

Have I Been Pwned: Sound Radix Data Breach In March 2026, the audio production tools company Sound Radix disclosed a data breach that they subsequently self-submitted to HIBP. Attributed to unauthorised access to a customer support platform, t...

New breach: Sound Radix had 293k unique email addresses breached in an incident they disclosed this week before self-submitting it to HIBP. Data included name and potentially hashed password. 76% were already in @haveibeenpwned.com. Read more: haveibeenpwned.com/Breach/Sound...

Weekly Update 496 Watching OpenClaw do its thing must be like watching the first plane take flight. It's a bit rickety and stuck together with a lot of sticky tape, but squint and you can see the potential for agentic…

Weekly update is up! Baydöner Breach; Aura Breach; Building PwnedClaw Agentic AI on a Mac Mini to do Data Breach Stuff www.troyhunt.com/weekly-updat...

Have I Been Pwned: RuneScape Boards Data Breach In around 2011, the now defunct RuneScape Boards forum (also known as RSBoards) suffered a data breach that was later redistributed as part of a larger corpus of data. The vBulletin-based service expo...

New breach: In around 2011, the now defunct RuneScape Boards exposed 223k unique email addresses. Data also included username, IP address and salted MD5 password hash. 96% were already in @haveibeenpwned.com. Read more: haveibeenpwned.com/Breach/RSBoa...

Weekly Update 496 Baydöner Breach; Aura Breach; Building PwnedClaw Agentic AI on a Mac Mini to do Data Breach Stuff

Going live with my weekly vid in 10 mins! Baydöner Breach; Aura Breach; Building PwnedClaw Agentic AI on a Mac Mini to do Data Breach Stuff youtube.com/live/WbKbDiM...

Have I Been Pwned: Aura Data Breach In March 2026, the online safety service Aura disclosed a data breach that exposed 900k unique email addresses. The data was primarily associated with a marketing tool from a previously acquired compa...

New breach: Aura exposed 900k unique email address earlier this month, primarily sourced from a marketing tool. Data also included name, phone number, physical and IP address. 90% were already in @haveibeenpwned.com . Read more: haveibeenpwned.com/Breach/Aura

That would greatly surprise me. Based on conversations I’ve had, my conclusion is that it’s a young guy who was the proverbial dog that caught the car. I highly doubt money was paid.

Weekly Update 495 In the beginning, it was simple. A website, a database and 150M+ email addresses to search. Time has added serverless functions (which run on servers 🤷‍♂️), code on the edge, new data storage…

Weekly update is up! Behind the scenes of some of Have I Been Pwned’s most important architectural components www.troyhunt.com/weekly-updat...

Have I Been Pwned: Divine Skins Data Breach In March 2026, the League of Legends custom skins service Divine Skins suffered a data breach. The incident was disclosed via the service's Discord server, where Divine Skins stated that an unauthoris...

New breach: League of Legends custom skins service Divine Skins had 105k email addresses and usernames breached this week, along with user purchase history. 50% were already in @haveibeenpwned.com. Read more: haveibeenpwned.com/Breach/Divin...

Have I Been Pwned: Baydöner Data Breach In March 2026, the Turkish restaurant chain Baydöner suffered a data breach which was subsequently published to a public hacking forum. The incident exposed over 1.2M unique email addresses along with...

New breach: Turkish restaurant chain Baydöner had 1.2M unique email addresses exposed last week. Data also included name, phone number, city and plaintext password. 28% were already in @haveibeenpwned.com. Read more: haveibeenpwned.com/Breach/Baydo...

Weekly Update 495 Behind the scenes of some of Have I Been Pwned’s most important architectural components

Going live with my weekly vid in 10 mins! Behind the scenes of some of Have I Been Pwned’s most important architectural components youtube.com/live/revPU53...

Weekly Update 494 Since starting HIBP a dozen and a bit years ago, I've loaded an average of one breach every 4.7 days. That's 959 of them to date, but last week it was five in only two days. That's a few weeks' worth…

Weekly update is up! Breachapalooza: Odido, KomikoAI, Quitbro, Lovora, Provecho; The Hunger Rush Situation; I Finally Got Age-Checked www.troyhunt.com/weekly-updat...

Yeah, porn age checks just came into effect in Aus and I haven’t seen a single mainstream news story about it

Interaction (like this) isn’t hard, but creating origin content and maintaining threads across multiple platforms (and it’s not just bsky folks making that suggestion), is just too time consuming.

I’m still here 🙂 And Mastodon, and LinkedIn, and Facebook. I can spread automated posts and manual responses around, but trying to maintain original content on each is painful. I do miss having everyone in one place.

Try my X account, I mostly post there, that’s where the vast bulk of people are

Weekly Update 494 Breachapalooza: Odido, KomikoAI, Quitbro, Lovora, Provecho; The Hunger Rush Situation; I Finally Got Age-Checked

Going live with my weekly vid in 10 mins! Breachapalooza: Odido, KomikoAI, Quitbro, Lovora, Provecho; The Hunger Rush Situation; I Finally Got Age-Checked youtube.com/live/I-XLZhG...

Yep, lot of that going around

What do you mean by “anchoring in local execution”?

Fuelling it how?