Skip to content

Have I Been Pwned API

The Have I Been Pwned API returns a list of breach entries as JSON. Each item includes the breach title, affected account count, a short count label, a description, the breach date, and a direct link to the breach page.

Response Format

All successful responses are returned as a JSON array.

[
    {
        "title": "Example",
        "breachedAccountCount": "100",
        "breachedAccountCountShort": "0.1K",
        "description": "Breach description...",
        "date": "May 01, 2026 GMT, 3:00 AM",
        "link": "https://haveibeenpwned.com/Breach/Example?utm_source=tylermwise.uk"
    }
]

Response Fields:

  • title (string) - The breach name.
  • breachedAccountCount (string) - The full breached account count.
  • breachedAccountCountShort (string) - A shortened version of the breached account count.
  • description (string) - A detailed description of the breach.
  • date (string) - The breach date.
  • link (string) - A direct link to the breach entry.

Authentication Methods

This endpoint is publicly accessible and does not require authentication.

Characteristics:

  • No authentication required
  • JSON array response format
  • Returns breach listing data
  • Suitable for public display and lookup tools

Usage:

curl "https://api.tylermwise.uk/v1/haveibeenpwned"

Endpoint

GET /v1/haveibeenpwned

Example Request

curl "https://api.tylermwise.uk/v1/haveibeenpwned"

Example Response

[
    {
        "title": "Abrigo",
        "breachedAccountCount": "711,099",
        "breachedAccountCountShort": "711.1K",
        "description": "Breach description...",
        "date": "May 14, 2026 GMT, 3:37 AM",
        "link": "https://haveibeenpwned.com/Breach/Abrigo?utm_source=tylermwise.uk"
    }
]

Response Fields

Field Type Description
title string Breach name.
breachedAccountCount string Full account count affected.
breachedAccountCountShort string Shortened account count label.
description string Breach description.
date string Date and time of the breach entry.
link string Direct URL to the breach page.

Notes

  • The endpoint returns a list of breach records.
  • Each record includes a direct link to the Have I Been Pwned breach page.
  • The response is an array, not a single object.
  • If you want to render multiple breach items, loop through the array in your application code.

HTTP Status Codes

Standard responses may include:

  • 200 - Success.
  • 400 - Bad Request.
  • 429 - Too Many Requests.
  • 500 - Internal Server Error.

Versioning

This page documents version 1 of the Have I Been Pwned API, available under the /v1/ path.