Check your Google dark web report. https://myactivity.google.com/dark-web-report/dashboard Combo Lists are usually the problem when Google is telling you everything is breached. Something to note - even after you've changed all your passwords, if another one of these combo lists does the rounds, Google will still poop itself and tell you there's a breach. The information is most likely the old information usually merged with other old information and not much to worry about (assuming you haven't had another more recent breach). I would strongly recommend using a password manager in any event rather than relying on Google. Not that Google isn't safe but rather, it's a weak link if there's a situation with malware/infostealers. Answer from Deleted User on reddit.com
Google Support
support.google.com › accounts › answer › 9457609
Change compromised passwords in your Google Account - Computer - Google Account Help
At the top right, select More Passwords and autofill Google Password Manager. On the left, select Checkup.
Google
docs.cloud.google.com › security › recaptcha › detect password leaks and breached credentials
Detect password leaks and breached credentials | reCAPTCHA | Google Cloud Documentation
With reCAPTCHA, you can conduct regular audits of user credentials (passwords) as part of any assessment to ensure that they have not been leaked or breached. To perform these assessments, Google uses the Password Checkup feature.
Videos
12:30
How Safe Are Your Passwords? Use This Tool In Chrome To Find Out ...
Protect Your Passwords: How to Check If You've Been Pwned
01:45
Massive Global Data Leak Exposes 183 Million Passwords | Gmail, ...
07:57
Heard About a Huge Password Leak? Here's What You Should Do. - YouTube
Google Support
support.google.com › chrome › a › answer › 13597868
Password Leak Detection - Chrome Enterprise and Education Help
Password Leak Detection provides users with alerts when any potentially compromised password use is detected.
Google Support
support.google.com › accounts › thread › 137167503 › how-do-i-find-out-which-passwords-have-been-compromised
How do I find out which passwords have been compromised ? - Google Account Community
Skip to main content · Google Account Help · Sign in · Google Help · Help Center · Community · Google Account · Terms of Service · Submit feedback · Send feedback on
Have I Been Pwned
haveibeenpwned.com
Have I Been Pwned: Check if your email address has been exposed in a data breach
Have I Been Pwned allows you to check whether your email address has been exposed in a data breach.
Google Cloud
cloud.google.com › security › recaptcha › password leak verification
Password leak verification | reCAPTCHA | Google Cloud
String username = "username"; String password = "password"; checkPasswordLeak(projectID, username, password); } /* * Detect password leaks and breached credentials to prevent account takeovers * (ATOs) and credential stuffing attacks.
Reddit
reddit.com › r/cybersecurity_help › google password leak - how to find the leak?
r/cybersecurity_help on Reddit: Google Password Leak - how to find the leak?
June 3, 2025 -
Hi Redditors,
Recently, I have been involved in a leak, but I have no idea how it happened.
A few days ago, I received a login prompt to my Microsoft Authenticator and rejected it. Then, they started popping up one by one for other platforms. Most of them had 2FA, so I immediately changed the passwords. Today, I received a notification from Google Password Manager stating that 80% of my passwords were leaked and immediate action was required. Then, I changed all of them to new ones.
But my question is: I have no idea how this happened and should I be worried?
1- I have not used a PC for one year; I only use a mobile phone (non-rooted, official firmware). 2- Even some of the leaked accounts were created/signed in last few months, during which I only used a mobile phone. 3- My brother, in another country, has been experiencing the same thing since the same date. 4- More than a year ago, we were using the same desktop PC. I am 100% sure I logged out of everything a year ago. If this caused the leak, how is it possible they accessed my recently created accounts (as stated in 2)? 5- In my Google account, only one session is active.
I would really appreciate your help in finding the cause of this leak and fixing it.
Top answer 1 of 4
3
Check your Google dark web report. https://myactivity.google.com/dark-web-report/dashboard Combo Lists are usually the problem when Google is telling you everything is breached. Something to note - even after you've changed all your passwords, if another one of these combo lists does the rounds, Google will still poop itself and tell you there's a breach. The information is most likely the old information usually merged with other old information and not much to worry about (assuming you haven't had another more recent breach). I would strongly recommend using a password manager in any event rather than relying on Google. Not that Google isn't safe but rather, it's a weak link if there's a situation with malware/infostealers.
2 of 4
1
SAFETY NOTICE: Reddit does not protect you from scammers. By posting on this subreddit asking for help, you may be targeted by scammers ( example? ). Here's how to stay safe: Never accept chat requests, private messages, invitations to chatrooms, encouragement to contact any person or group off Reddit, or emails from anyone for any reason. Moderators, moderation bots, and trusted community members cannot protect you outside of the comment section of your post. Report any chat requests or messages you get in relation to your question on this subreddit ( how to report chats? how to report messages? how to report comments? ). Immediately report anyone promoting paid services (theirs or their "friend's" or so on) or soliciting any kind of payment. All assistance offered on this subreddit is 100% free, with absolutely no strings attached. Anyone violating this is either a scammer or an advertiser (the latter of which is also forbidden on this subreddit). Good security is not a matter of 'paying enough.' Never divulge secrets, passwords, recovery phrases, keys, or personal information to anyone for any reason. Answering cybersecurity questions and resolving cybersecurity concerns never require you to give up your own privacy or security. Community volunteers will comment on your post to assist. In the meantime, be sure your post follows the posting guide and includes all relevant information, and familiarize yourself with online scams using r/scams wiki . I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.
Google Account
myaccount.google.com › intro › security-checkup
The new Security Checkup
Take 2 minutes to check your security status and get personalized tips to strengthen the security of your Google Account.
Moneycontrol
moneycontrol.com › home › technology
Google Password Manager: How to use Google Password Manager to check if your Gmail, Instagram, X and other passwords have leaked
June 23, 2025 - How to check using Google Password Checkup Google’s Password Checkup tool is built into both your Google Account and the Chrome browser. It compares your saved passwords against known data leaks and flags any compromised, reused, or weak passwords.
Google Support
support.google.com › user-security › answer › 10268698
How does Google check whether my passwords have been compromised? - User Security Help
For information on how Google checks if your password has been compromised, see this information on how password protection works.
International Business Times
ibtimes.co.uk › world › google
Google Password Leak: How to Check If Your Account's Been Compromised—Plus Data Security Tips | IBTimes UK
June 20, 2025 - Click the 'pwned?' button to check your breach status. If the result says '0 data breaches', your account is likely safe. If a list of breaches appears, you should immediately change your Google password and secure any linked accounts.
LeakCheck
leakcheck.io
LeakCheck - Find out if your credentials have been compromised
This is the main purpose of LeakCheck. Find out if your data has been compromised as a result of any breach. According to the results of a survey conducted by Google in 2018, 65% of users on the internet use the same password for most (or even all) of their accounts. With our Enterprise API, you can check whether a password has been used before, even before a user registers on your website.
Google
guidebooks.google.com › online-security › stay-secure-online › use-password-checkup
Use Password Checkup - Guidebooks with Google
We cannot provide a description for this page right now
Reddit
reddit.com › r/explainlikeimfive › eli5 how does apple or google know that my password appeared in a data leak?
r/explainlikeimfive on Reddit: ELI5 How does Apple or Google know that my password appeared in a data leak?
September 18, 2024 -
Do they constantly monitor the dark web and cross reference all of my passwords?
Top answer 1 of 4
8
They probably use services like https://haveibeenpwned.com/ where you can check by yourself...
2 of 4
4
Apple, Google, and many other password manager providers typically get access to leaked password lists, either through public breaches, or from security researchers. They typically avoid actually paying for password lists from the hackers. There will be two different checks done. One is against anything in password managers. Because those passwords are reused, they have to be stored in a manner that allows them to be reversed. This means they can compare the password from the leak with the one they have saved. They may also compare it against your actual Google or Apple password, given that they can process them in the same manner as the stored password and compare them. Getting the password lists is a more manual process, but checking them is automated.
The Verge
theverge.com › tech › news › google
Google is making it easier to check if your passwords have been compromised in a data breach | The Verge
October 2, 2019 - Google has a password manager that syncs across Chrome and Android, and now the company is adding a “password checkup” feature that will analyze your logins to ensure they haven’t been part of a massive security breach — and there have been oh so many of those.
American Express
befluentinfinance.com › home › blog › google passwords leaked: your 4-step security guide
Google Passwords Leaked: Your 4-Step Security Guide
June 22, 2025 - Monitor these indicators: unfamiliar ... and unexpected changes to your account settings. Google provides detailed activity logs showing when and where your account was accessed. Check these weekly for suspicious pattern...
Digitalguardian
digitalguardian.com › home › blog › google can now tell you if your password was in a data breach
Google Can Now Tell You If Your Password Was in a Data Breach | Fortra's Digital Guardian
February 5, 2019 - One of them, a Chrome browser extension named Password Checkup, developed with the help of cryptography experts at Stanford University, helps notify users if a password they've entered appears to been compromised in a data breach.
Fox News
foxnews.com › tech › 183-million-email-passwords-leaked-check-yours-now
183 million email passwords leaked: Check yours now
The risk remains real for anyone using old or repeated credentials. One compromised password can unlock social media, banking and cloud accounts. GOOGLE CONFIRMS DATA STOLEN IN BREACH BY KNOWN HACKER GROUP · Researcher Troy Hunt traced the leak to malware that secretly steals passwords from ...
Published October 30, 2025
Forbes
forbes.com › forbes homepage › innovation › cybersecurity
FBI Confirms 630 Million Stolen Passwords — How To Check Yours Now
1 day ago - I’m something of a Proton ecosystem ... VPN, Google Calendar with Proton Calendar and so on. The full Proton suite also has a password manager app called, unsurprisingly, Proton Pass. This also comes with a Pass Monitor function that includes dark web monitoring to check if your personal information has been leaked in a data ...