Why do I see an alert about a compromised password?

This article provides detailed information about the alert concerning a compromised password.

When attempting to access your Weglot account, you may encounter the following message:

This alert does not indicate a security breach of Weglot systems.

Weglot implements a preventive security control during account registration and password changes to check whether a chosen password has previously appeared in publicly available datasets of compromised credentials. These datasets originate from third-party data breaches unrelated to Weglot.

If a password is known to have been exposed elsewhere, Weglot rejects it and displays a warning. This means the password itself is considered compromised, even though no Weglot systems or customer data have been impacted.

What action is required?

Users are asked to choose a different password that has not been exposed. This is sufficient to proceed.

Why does Weglot use this mechanism?

This control is designed to:

  • Prevent the use of compromised credentials
  • Reduce the risk of account takeover
  • Strengthen overall account security

Similar password exposure checks are widely adopted across the SaaS industry and are considered a security best practice.

What data sources are used?

Password exposure checks are based on publicly documented datasets, such as those referenced by the Have I Been Pwned project:

https://haveibeenpwned.com/Passwords

Weglot does not receive or store passwords from these sources and does not share customer passwords with third parties.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us

Related Articles