Security News > 2020 > November > How to Prevent Pwned and Reused Passwords in Your Active Directory
In a password spraying attack, cybercriminals will often use databases of breached passwords, a.k.a pwned passwords, to effectively try these passwords against user accounts in your environment.
Often passwords exposed in other breaches will be passwords that other users are using in totally different environments.
Using Azure AD Password Protection employs a mechanism that checks passwords during the password change event for a user to prevent users from configuring weak or otherwise blocked passwords.
It does not include breached passwords - As discussed, breached or pwned passwords are extremely dangerous.
Specops provides a really great combination of tools that allows effectively finding breached passwords along with proactively blocking and enforcing password policies that actively check to see if current passwords are found on lists of passwords collected from previous breaches.