Hello, welcome to the Friday, August 4th, 2017 edition of the San Internet Storm Center's Stormcast.

My name is Johannes Ulrich, and the I'm recording from Jacksonville, Florida.

If you're interested in a little site project to help us out here at the Internet Storm Center,

I posted about our Raspberry Pi Honeypot.

So if you have a spare Raspberry Pi sitting in a corner, you may install our software in order to contribute to our data collection

effort. Really important, particularly to get, for example, home users online. It's not really a matter

of how important your network is.

Actually, what we're looking for is sort of average networks. And by using the Raspberry Pi platform,

I think we made it reasonably easy to set this up for yourself. So take a look at the diary. It has more instructions and links to the

GitHub repository with the code. And Troy Hunt added an additional service to his website,

Have I Been Poned? Now this website has been collecting preach data for quite a while now, and you were able

to enter your email address and we're able to figure out whether or not your email address

has been shown up in any preaches.

Now, if lately commented on this, that this isn't really all that useful because pretty

much all email addresses have shown up

in breaches at some point. So if your email address is displayed, you don't really know what

password went with this particular breach in particular, since the site typically doesn't show you

what breach your email address was involved in.

Well, Troy Hunt now offered a new service for Have I Been Powned and that's a collection of

passwords. It's somewhere in the around 300 million passwords that Troy has accumulated via various online resources. Now, you don't get the

email address going with the password, of course, but you can just download all these 300 million

passwords or there are APIs and various other queries that you can use to check if a certain

...