Cybercriminals are using compromised accounts as one of their favorite tactics to infiltrate business-critical environments. Breached password detection is a recommended best practice for an additional layer of cyberattack prevention. For businesses to have proof of a password breach, they must have a way to monitor the password landscape for breached passwords. The National Institute of Standards and Technology (NIST) recommends breached password protection. The more extensive the breached password database databases, the better the password protection services, for protecting against breaches.
Source: https://thehackernews.com/2021/06/using-breached-password-detection.html