Monday Dec 19th, 2016
You may have heard that Yahoo has released details of two breaches this year. The first happened in 2012/2013 and released the names, passwords, and security challenge questions/answers for more than five hundred million user accounts. They announced the second one this week, from 2013/2014, where they say more than one billion accounts potentially had their information compromised. Chances are, if you’ve had a Yahoo email account, yours was part of those breaches. The free site to monitor if you’ve been involved in a breach, HaveIBeenPwned.Com, points out that almost 60% of the accounts that were on the initial Yahoo list that were also part of the 2011/2015 Sony breaches, shared the same passwords on both services.
“What can you do?”
Yahoo wisely points out that its users should follow these steps:
Change their passwords for any other accounts on which you use the same or similar information used for your Yahoo Account.
Change their security questions and answers for any other accounts on which you use the same or similar information used for your Yahoo Account.
Review all of your accounts for suspicious activity.
Be cautious of any unsolicited communications that ask for your personal information or refer you to a web page asking for personal information.
Avoid clicking on links or downloading attachments from suspicious emails.
We would also recommend that you register all of your email addresses with a site such as HaveIBeenPwned.Com so that you are notified when any of your email accounts appear in leaked data online.
The Internet is a shared resource and securing it is Our Shared Responsibility. You can get additional tips and hints on how to remain safe on-line by visiting: http://www.staysafeonline.org