Yahoo Breach

                                 

“What’s happened?”

     You may have heard that Yahoo has released details of two breaches this year. The first happened in 2012/2013 and released the names, passwords, and security challenge questions/answers for more than five hundred million user accounts. They announced the second one this week, from 2013/2014, where they say more than one billion accounts potentially had their information compromised. Chances are, if you’ve had a Yahoo email account, yours was part of those breaches. The free site to monitor if you’ve been involved in a breach, HaveIBeenPwned.Com, points out that almost 60% of the accounts that were on the initial Yahoo list that were also part of the 2011/2015 Sony breaches, shared the same passwords on both services.

“What can you do?”

     Yahoo wisely points out that its users should follow these steps:

  • Change their passwords for any other accounts on which you use the same or similar information used for your Yahoo Account.

  • Change their security questions and answers for any other accounts on which you use the same or similar information used for your Yahoo Account.

  • Review all of your accounts for suspicious activity.

  • Be cautious of any unsolicited communications that ask for your personal information or refer you to a web page asking for personal information.

  • Avoid clicking on links or downloading attachments from suspicious emails.

    We would also recommend that you register all of your email addresses with a site such as HaveIBeenPwned.Com so that you are notified when any of your email accounts appear in leaked data online.

    The Internet is a shared resource and securing it is Our Shared Responsibility. You can get additional tips and hints on how to remain safe on-line by visiting: http://www.staysafeonline.org

     

Related Stories