The LRZ regularly performs tests for compromised password hashes stored at the LRZ, based on the databases of https://haveibeenpwned.com/Passwords. If your password of your account is concerned, you will be informed directly by the LRZ and have 14 days to change your password (35 days for functional accounts). Otherwise, your password will expire. Even though the password appears in those databases without any direct connection to your account, it must be assumed that it will sooner or later be used in dictionary attacks to gain access to the account and all associated services, data, emails etc.


  • No labels