From troyhunt.com
Last week I was contacted by CERT Poland. They’d observed a phishing campaign that had collected 68k credentials from unsuspecting victims and asked if HIBP may be used to help alert these individuals to their exposure. The campaign began with a typical email requesting more information:
![](https://cert.bournemouth.ac.uk/wp-content/uploads/2023/08/image-52.png)