i work in a small to median sized IT support business.
i'm the cyber sec junior, and i have been wondering about if i can implement HIBP in a corporate setting.
i currently use it to educate staff members on how passwords are breached, and why emails need to be secure, and i know i can use it to scan a domain and find emails linked to breaches and that i can use it as a blacklist for passwords.
is there anything else i should think about or look into?
thank you.
