Frequently asked questions


I got notified for Password Security Issue

We enabled a check against a well known database containing password (hashes) from security breaches.

Wait, you transfer my password to them?

No. We hash your password, and take the first 5 characters from that hash. The remote database returns all hashes beginning with these 5 characters. We walk through all these hashes, and if one matches exactly the hash of your password, your password was part of a security breach somewhere on the internet. For more on that process info just search for k-anonymity. For more info on the password hash database, check out

Hm, ok. What to do now?

Easy enough! Change your password.

OK, I dislike changing my password ...

Your choice.

But RZA keeps bugging me on every login about my broken password security ...