Password breach warning

rabbitBUSH · Jan 28, 2026

I just logged in using chrome on the phone and received this warning. Anyone else received this - and - has there been a data breach at Anywhere? I don't generally use PWD manager on this device but.....

Erel · Jan 29, 2026

I'm not familiar with any breach, and the passwords aren't saved in the forum database. Only a hash of the password (with a salt).

rabbitBUSH · Jan 29, 2026

Thanks @Erel ..... seems like a false positive from Chrome.... It did not appear at this log in with no action taken by me overnight. I'll consider action later on.

hatzisn · Jan 29, 2026

rabbitBUSH said:
Thanks @Erel ..... seems like a false positive from Chrome.... It did not appear at this log in with no action taken by me overnight. I'll consider action later on.

If I were you I would think that someone may have gained access to my google account and has access to all the saved in chrome passwords. You might want to pay a visit to account.google.com and check in the security the devices that access your google account. Google is never wrong since it crawls the dark web everyday. If you use the same pair of credentials also in an other site then the breach might be on it.

Alessandro71 · Jan 29, 2026

hatzisn said:
If you use the same pair of credentials also in an other site then the breach might be on it.

this is the most likely option

Sandman · Jan 29, 2026

Erel said:
I'm not familiar with any breach, and the passwords aren't saved in the forum database. Only a hash of the password (with a salt).

Just a minor note, they don't say the breach happened at B4X. They only say that the password has been found in A breach. So if @rabbitBUSH have reused their password from some other site, which have had a breach, that would trigger this message.

A simple solution would be to just check, without research I'm willing to bet that they base that data on this site: https://haveibeenpwned.com (it's trustworthy)

rabbitBUSH · Jan 29, 2026

hatzisn said:
saved in chrome passwords.

Thanks for the comment @hatzisn ....I don't generally store Any passwords in any of the so called secure "secure online" password managers. Also never log into sites using Google credentials (and I don't do TwitFace so I can't ever do it that way either, no accounts on any of that stuff).

But I'm going to go through those motions as suggested anyway - when I get out of the bush and into the office.
As I noted to @Erel - the warning isn't showing up today (on this phone) and it's the third time I'm entering.

rabbitBUSH · Jan 29, 2026

Sandman said:
Just a minor note, they don't say the breach happened at B4X

Thanks for the comments @Sandman - that particular PWD is Only used on B4X. We have a policy on PWD creation so every site's log in credentials are unique in that respect. And the USR is also unique to B4X come to think of it...... All USR are just email addresses as per the site request - but all PWDs are unique. (It's not a very long list, but it's a lost none the less.)

rabbitBUSH · Jan 29, 2026

Alessandro71 said:
this is the most likely option

Thanks for the comments @Alessandro71 ..... See other comments posted - seems unlikely under the circumstances.

Sandman · Jan 29, 2026

rabbitBUSH said:
Thanks for the comments @Sandman - that particular PWD is Only used on B4X. We have a policy on PWD creation so every site's log in credentials are unique in that respect. And the USR is also unique to B4X come to think of it...... All USR are just email addresses as per the site request - but all PWDs are unique. (It's not a very long list, but it's a lost none the less.)

For completeness, they don't say that the combination of username and password has been breached. They only mention your password. So even though you might have MyVery1337Password as your password for this forum only, it's entirely possible some other individual have that exact same password - which has appeared in a breach. Which might trigger that alert.

All in all, I wouldn't worry too much. But I would also change my password, just in case.

rabbitBUSH · Jan 29, 2026

Sandman said:
entirely possible some other individual have that exact same password -

Ooooo that Would be interesting - someone who can speak South Sotho language - be like an Axis Power trying to decipher an encrypted Navaho wartime transmission.

If one goes to havibeenpwnd practically any mail address shows up in breeches....breech lists run into billions long (or wait was that trillions?).

Not too worried about it will just carry on amongst the vigilante crowd.....

Password breach warning

rabbitBUSH

Well-Known Member

Erel

B4X founder

rabbitBUSH

Well-Known Member

hatzisn

Expert

Alessandro71

Well-Known Member

Sandman

Expert

rabbitBUSH

Well-Known Member

rabbitBUSH

Well-Known Member

rabbitBUSH

Well-Known Member

Sandman

Expert

rabbitBUSH

Well-Known Member

Password breach warning

Well-Known Member

B4X founder

Well-Known Member

Expert

Well-Known Member

Expert

Well-Known Member

Well-Known Member

Well-Known Member

Expert

Well-Known Member

Privacy & Transparency

Privacy & Transparency