: When you use a "free" password found on a public forum, you are using credentials that are already compromised. Hackers use these lists to conduct credential stuffing attacks