An especially vulnerable type of password is a breached password, a.k.a “pwned” password. The IBM Cost of a Data Breach Report 2020 noted compromised credentials as one of the primary contributors to malicious data breaches in the report’s key findings. A single stolen set of credentials may be all an attacker needs to compromise your data. A breached user password in one environment may exist for a different user in another organization. Microsoft Active Directory provides many tools and management utilities for interacting with end-user accounts and managing passwords.
Source: https://thehackernews.com/2020/12/how-organizations-can-prevent-users.html