How on earth can you both not accept the password I copied from my password safe and tell me that I cannot use the same pasaword again?
How on earth can you both not accept the password I copied from my password safe and tell me that I cannot use the same pasaword again?
If there has been a data leak, they might block your current password because the hash has been leaked
Yes, that might be a plausible theory. Basically a bad yersion of you must change your password.
How would that be considered bad? Is this some meme I’m too stupid to understand or something?
It would be better if the login flow said something like
instead of me being puzzled why my password doesn’t work.
except now anyone guessing your password knows when they guess your password right? while that site is safe most users use the same password and any site they use with the same email is now vulnerable.
Yes… but your credentials are already for sale in the darknet
Only the hash, not the password
I mean they can guess the password you used previously that no longer works…?
I’m sure that makes them feel much better, lol.
The leak doesn’t even need to happen on their site, they could check the password hash against known leaked hashes (from have I been pwned for example) and block it