{"id":1955,"date":"2025-02-13T10:03:38","date_gmt":"2025-02-13T10:03:38","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2025\/02\/13\/have-i-been-pwned-likely-to-ban-resellers-subscriptions\/"},"modified":"2025-02-13T10:03:38","modified_gmt":"2025-02-13T10:03:38","slug":"have-i-been-pwned-likely-to-ban-resellers-subscriptions","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2025\/02\/13\/have-i-been-pwned-likely-to-ban-resellers-subscriptions\/","title":{"rendered":"Have I Been Pwned Likely to Ban Resellers Subscriptions"},"content":{"rendered":"<p>    Have I Been Pwned Likely to Ban Resellers Subscriptions<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>\n<p>Have I Been Pwned (HIBP), a popular data breach notification service, has expressed a strong inclination to ban resellers from obtaining platform memberships.\u00a0<\/p>\n<p>Troy Hunt made this decision after thoroughly examining the excessive support burden these resellers impose on the service.<\/p>\n<p>HIBP is a collectivel that allows users to check whether their personal information, such as <a href=\"https:\/\/cybersecuritynews.com\/youtube-bug-exploited-email-addresses\/\" target=\"_blank\" rel=\"noreferrer noopener\">email addresses<\/a> or phone numbers, has been exposed in data breaches.\u00a0<\/p>\n<p>The platform aggregates data from over 866 breaches and thousands of paste sites, enabling individuals and organizations to take corrective actions like resetting passwords and enabling multi-factor authentication.\u00a0<\/p>\n<p>HIBP also offers an API for bulk queries, available through paid subscriptions ranging from $39.50 to $1,370 annually.<\/p>\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\">\n<div class=\"wp-block-embed__wrapper\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">I&#8217;m seriously considering just an outright ban on resellers buying <a href=\"https:\/\/twitter.com\/haveibeenpwned?ref_src=twsrc%5Etfw\">@haveibeenpwned<\/a> subscriptions for customers. It&#8217;s just constant dramas, support overhead, obnoxious responses and confusion. What are customers actually getting from resellers, other than *massive* price markups?<\/p>\n<p>\u2014 Troy Hunt (@troyhunt) <a href=\"https:\/\/twitter.com\/troyhunt\/status\/1887634915057148282?ref_src=twsrc%5Etfw\">February 6, 2025<\/a>\n<\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>\n<\/div>\n<\/figure>\n<p>Resellers often purchase HIBP subscriptions and offer them to end-users at significantly marked-up prices. While this practice is not inherently unethical, it has led to several complications.<\/p>\n<p>Resellers often charge customers excessive rates for services they could access directly from HIBP at a lower cost.<\/p>\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\">\n<div class=\"wp-block-embed__wrapper\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">See who can guess how much a reseller marks up the price. Keep in mind these companies are just selling the service and taking a cut, they\u2019re not MSPs, they\u2019re not adding any other value, they\u2019re just reselling our API keys and domain searches to companies that already wanted it.<\/p>\n<p>\u2014 Troy Hunt (@troyhunt) <a href=\"https:\/\/twitter.com\/troyhunt\/status\/1887785715049885700?ref_src=twsrc%5Etfw\">February 7, 2025<\/a>\n<\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>\n<\/div>\n<\/figure>\n<p>Further, resellers frequently pass on <a href=\"https:\/\/cybersecuritynews.com\/okta-hack-customer-data\/\" target=\"_blank\" rel=\"noreferrer noopener\">customer support<\/a> responsibilities to HIBP, creating an additional burden for the platform\u2019s team.\u00a0<\/p>\n<p>Many users remain unaware of what they are paying for when purchasing through resellers, leading to dissatisfaction and misunderstandings.<\/p>\n<p>Troy Hunt, the creator of Have I Been Pwned expressed his frustration on social media, stating, \u201cWhat are customers actually getting from resellers, other than massive price markups?.\u201d<\/p>\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\">\n<div class=\"wp-block-embed__wrapper\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">They\u2019re not resellers, they\u2019re consumers of the service. Companies purchase our service through resellers who on-sell exactly the same thing but for more money and with shittier service.<\/p>\n<p>\u2014 Troy Hunt (@troyhunt) <a href=\"https:\/\/twitter.com\/troyhunt\/status\/1887727491772784847?ref_src=twsrc%5Etfw\">February 7, 2025<\/a>\n<\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>\n<\/div>\n<\/figure>\n<p>Hunt also shared stats that: \u201c0.86% of our customers who come through them are consuming the same amount of support time as the entire remaining 99.14%.\u201d\u00a0<\/p>\n<p>This imbalance underscores the inefficiency and resource drain caused by reseller practices.<\/p>\n<p>A ban on resellers would represent a decisive step towards ensuring greater transparency and fairness in how HIBP subscriptions are distributed. By eliminating intermediaries, HIBP could:<\/p>\n<ul class=\"wp-block-list\">\n<li>\n<strong>Reduce Customer Costs:<\/strong> Direct subscriptions would eliminate reseller markups, making the service more affordable.<\/li>\n<li>\n<strong>Streamline Support: <\/strong>Customers would interact directly with HIBP\u2019s support team, reducing miscommunication and delays.<\/li>\n<li>\n<strong>Enhance Security: <\/strong>Direct access to HIBP ensures that customers\u2019 data is handled in compliance with the platform\u2019s security standards.<\/li>\n<\/ul>\n<p class=\"has-text-align-center has-background\" style=\"background:linear-gradient(180deg,rgb(238,238,238) 93%,rgb(169,184,195) 100%)\"><strong>PCI DSS 4.0 &amp; Supply Chain Attack Prevention \u2013\u00a0<a href=\"https:\/\/webinars.indusface.com\/reducing-3rd-party-risks-pci-dss-and-supply-chain-attack-prevention\/register?utm_source=gbhackers-side-banner&amp;utm_campaign=2025-feb-webinar-pci-dss&amp;utm_medium=referral\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Free Webinar<\/a><\/strong><\/p>\n<p>The post <a href=\"https:\/\/cybersecuritynews.com\/have-i-been-pwned-likely-to-ban-resellers\/\">Have I Been Pwned Likely to Ban Resellers Subscriptions<\/a> appeared first on <a href=\"https:\/\/cybersecuritynews.com\/\">Cyber Security News<\/a>.<\/p>\n<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Kaaviya<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/cybersecuritynews.com\/have-i-been-pwned-likely-to-ban-resellers\/\">Go to cyber-security-news<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Have I Been Pwned Likely to Ban Resellers Subscriptions Have I Been Pwned (HIBP), a popular data breach notification service, has expressed a strong inclination to ban resellers from obtaining platform memberships.\u00a0 Troy Hunt made this decision after thoroughly examining the excessive support burden these resellers impose on the service. HIBP is a collectivel that [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[129,63],"tags":[130],"class_list":["post-1955","post","type-post","status-publish","format-standard","hentry","category-cyber-security","category-cyber-security-news","tag-cyber-security-news"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/1955"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=1955"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/1955\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=1955"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=1955"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=1955"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}