Specops Breached Password Protection is a service that continuously checks your Active Directory passwords against a daily updated list of compromised passwords. The list contains over 4 billion unique passwords from major breach incidents, malware botnets, as well as passwords used in real attacks happening right now. The compromised password check can occur (1) during a daily scan and/or (2) during a password change in Active Directory. Users are prevented from choosing compromised password at change and can be enforced to change their password at next logon when a compromised password is found during a daily scan.