What Is A 'pwned' Password?
If a password has been involved in a data breach and this data is accessible and relevant, it’s part of the ‘pwned passwords’ database.
Basically if you used a password that got leaked, then you should never use it again. This is a good reason why you should never re-use passwords across different sites and services. This ensures that if 1 site is compromised, then your account is still safe on all other sites.
This option can be found under the Shield's main navigation menu > Security Zones > Users zone > Block Pwned Passwords component.
We go into much more detail on Shield's 'pwned' password feature on our blog, here.