Security Protection – Harry Waldron MVP Rotating Header Image

YAHOO EMAIL Security Breach – CHANGE YOUR PASSWORD

A major security breach of Yahoo email accounts has been reported and personally changed all my passwords immediately to a new STRONG & SECURE password.  All users should do this immediate as hackers can use a hijacked account to reset passwords used for banking, credit cards, or other sensitive accounts.  For example, they can go to your bank and request a password reset, which will be emailed back and allow potential to make fraudulent transactions.   It’s a best practice to routinely change email passwords at beginning of every quarter and make sure they are different from any other account.

http://yahoo.tumblr.com/post/75083532312/important-security-update-for-yahoo-mail-users

QUOTE:  Based on our current findings, the list of usernames and passwords that were used to execute the attack was likely collected from a third-party database compromise. We have no evidence that they were obtained directly from Yahoo’s systems. Our ongoing investigation shows that malicious computer software used the list of usernames and passwords to access Yahoo Mail accounts. The information sought in the attack seems to be names and email addresses from the affected accounts’ most recent sent emails.  What we’re doing to protect our users

1. We are resetting passwords on impacted accounts and we are using second sign-in verification to allow users to re-secure their accounts. Impacted users will be prompted (if not, already) to change their password and may receive an email notification or an SMS text if they have added a mobile number to their account.

2. We are working with federal law enforcement to find and prosecute the perpetrators responsible for this attack.

3. We have implemented additional measures to block attacks against Yahoo’s systems.

 

 

***************************************************************

HOW TO CHANGE YAHOO ACCOUNT & EMAIL PASSWORD

https://help.yahoo.com/kb/mail/password-sln2035.html

QUOTE: (from confirmation email on password changes)  Your password for this account has recently been changed. You don’t need to do anything. This message is simply a notification to protect the security of your account. Please note: your new password may take a while to activate. If it doesn’t work on your first try, please try it again later

You can always change your password by doing the following:

1. Sign in to any Yahoo! service

2. Click on any “My Account” link

3. Choose “Change Password”

***************************************************************

ADDITIONAL ARTICLES

http://www.theregister.co.uk/2014/01/31/yahoo_mail_users_change_your_password_now/

http://www.computerworld.com/s/article/9245908/Yahoo_resets_passwords_after_email_hack

Comments are closed.