Can Watchtower monitor an old password on "have I been pwned"?

sol42
sol42
Community Member
in Lounge

I understand that Watchtower checks the first few characters of a hashed password against known cracked passwords on have I been pwned. I would like to monitor my old former LastPass password against this or perhaps monitor one of the many now changed passwords that were contained in my former LastPass "vault". Would I need to create an entry in 1Password with the old username and password for this monitoring to work? I'm relatively sure that I would need to do so. And is this recommended?

1Password Version: 8.9.13
Extension Version: Not Provided
OS Version: Mac OS 13.1
Browser:_ Safari

Comments

  • Tertius3
    Tertius3
    Community Member
    edited January 2023

    You can check single passwords directly on the "have I been pwned" website: https://haveibeenpwned.com/Passwords
    Or list breaches connected with your email address: https://haveibeenpwned.com/

    If you want to check a whole vault from Lastpass, I guess it's the best approach to import that vault to a dedicated 1Password vault from your original csv, not postprocess anything but let Watchtower check that vault.

    You can also subscribe on the "have I been pwned" website to notifications in case your email address appears in upcoming breaches (menu "Notify me").

  • Dave_1P
    Dave_1P

    @sol42

    Welcome to the community forum! You can create a login item for your LastPass account and Watchtower will monitor it as it would any other login item: Use Watchtower to find passwords you need to change

    Also, and this probably obvious, I recommend that you not reuse your LastPass password for any other accounts. Especially 1Password.

    Let me know if you have any questions. 🙂

    -Dave

This discussion has been closed.