diff --git a/source/_components/haveibeenpwned.markdown b/source/_components/haveibeenpwned.markdown
index 15de845e3d1..067c142799b 100644
--- a/source/_components/haveibeenpwned.markdown
+++ b/source/_components/haveibeenpwned.markdown
@@ -12,6 +12,12 @@ redirect_from:
 
 The `haveibeenpwned` sensor platform creates sensors that check for breached email accounts on [haveibeenpwned](https://haveibeenpwned.com).
 
+<div class='note warning'>
+
+  The HaveIBeenPwned API now requires you to pay $3.50 a month in order to query the API. More info can be found [here](https://www.troyhunt.com/authentication-and-the-have-i-been-pwned-api/)
+
+</div>
+
 ## Configuration
 
 To enable this sensor, add the following lines to your `configuration.yaml`, it will list every specified email address as a sensor showing
@@ -24,6 +30,7 @@ sensor:
     email:
       - your_email1@domain.com
       - your_email2@domain.com
+    api_key: API_KEY
 ```
 
 {% configuration %}
@@ -31,6 +38,10 @@ email:
   description: List of email addresses.
   required: true
   type: list
+api_key:
+  description: HaveIBeenPwned API Key
+  required: true
+  type: string
 {% endconfiguration %}
 
 ## Breach meta data