Troy could you start off by introducing yourself?

My name is Troy Hunt. I started the website Have I Been Poned and I normally do a lot of traveling and speaking, just not at the moment.

For those who don't know what is have I been poned and what was the impetus for creating it?

So have I been pained as a data breach aggregation service when there's a data breach and that data

then gets leaked somewhere externally at varying

degrees of public accessibility. I grab it, I put it in a have I been poned and I make it

searchable so people can figure out where they have been poned and I started it in December 2013 and

somehow it became big and popular.

Before we get into the weeds of everything you do though though much of our episode is going to

concern the history of passwords so from what you know I've read some of your blogs

on the matter can you give us a minor history so how were passwords dealt with back in the day?

And how have they changed as computers and threat actors have evolved?

So passwords on computer systems go back to around about the 60s so we believe the first

instance of a password outside of just normal usage I mean we would have had

passwords thousands of years ago but passwords on computer systems go back to MIT in the 60s and they had

this compatible time sharing system where you had multiple people that could use the

same physical infrastructure of course it was very big infrastructure back then and the

password was the way of ensuring that whoever was using it was identified and they weren't

able to use a system on

on behalf for someone else. So many of the things that we we started setting in place

around how we authenticate to a computer system began now to what are we at

60 years ago. And how early on did hackers figure out that they could take advantage of passwords?

...