Cookies on this website
We use cookies to ensure that we give you the best experience on our website. If you click 'Continue' we'll assume that you are happy to receive all cookies and you won't see this message again. Click 'Find out more' for information on how to change your cookie settings.

The University Central IT recommends that users periodically confirm whether their online accounts have been compromised or "pwned" in a data breach.  This applies to University issued emails as well as personal accounts held by users (e.g. Gmail). The “Have I Been Pwned?” site aggregates information from publicly reported "breaches" where data was exposed to persons who should not have been able to view it.  It is a free service available to the public as data breaches are rampant and many people don't appreciate the scale or frequency with which they occur.

Users simply enter their email address where prompted here: https://haveibeenpwned.com/. If the query results in a “hit”, the user then needs to change – if the user has not already done so, the password credential at the company whose data was breached (e.g. LinkedIn). Further action may be required, but users do not need to try the password generator service offered or subscribe to notifications from this site. Please email any questions here:   datasecurity@phc.ox.ac.uk.