Did You Know?



Reply
Community Leader
Jasper_The_Rasper
Posts: 1,108
Registered: ‎06-12-2013

Yahoo Detects Mass Hack Attempt On Yahoo Mail, Resets All Affected Passwords

YahooThe details are a bit sparse right now, but Yahoo has just disclosed by way of their Tumblr that they’ve detected what they’re calling a “coordinated effort to gain unauthorized access to Yahoo Mail accounts”.

Yahoo didn’t disclose how many accounts were affected, but we’ve asked for clarification and will update the post accordingly. It’s possible that they’ve yet to nail down an exact number. Given that it was enough to disclose the news in a public blog post, it’s presumably a non-trivial amount.

The (sort of?) good news: it doesn’t appear that Yahoo’s own servers were compromised — instead, it looks like someone is firing off a bunch of login attempts using emails/passwords secured from an unnamed “third-party database compromise”. In other words: the attackers got someone else’s database of usernames/passwords, and are mass-checking for accounts that use them same credentials on Yahoo Mail.

In response to the attack, Yahoo has reset the passwords of all accounts that appear to have been affected. If you’re trying to log in and Yahoo is asking you to change your password and verify your identity via SMS, this is probably why.

 

Source Article

Community Leader

Please use plain text.
TripleHelix
Posts: 5,399
Topics: 404
Kudos: 3,291
Ideas: 5
Registered: ‎02-03-2012

Re: Yahoo Detects Mass Hack Attempt On Yahoo Mail, Resets All Affected Passwords

Grrr! brickwall.gif

 

TH

coollogo_com-133794099.gif


asapvip.png   SigSVIP.png    Sr.Expert Advisor Jan 23 2014.png


Webroot® SecureAnywhere™ Internet Security Complete 2014 Beta Tester v8.0.4.70 on my main system Windows 7 Ultimate 64bit & on Win XP 32bit, Win Vista 32bit, Win 7 32bit, Win 8.1 Pro 32bit & 64bit all on VM's. 


MVP.gif.pngMicrosoft® MVP Consumer Security 2012/15


New to the Community? Register now and start posting!

Please use plain text.
Community Manager Community Manager
Community Manager
nic
Posts: 1,074
Registered: ‎12-16-2013

Re: Yahoo Detects Mass Hack Attempt On Yahoo Mail, Resets All Affected Passwords

[ Edited ]

Nice quote from our own George Anderson (@GeorgeA on the community) in this article:

 

41288_Yahoo.jpg

"Although organisations like Yahoo have a big role to play in ensuring user data is stored safely and securely, at the end of the day it's also the responsibility of consumers to do everything they can to keep their credentials safe, he said.

"Having multiple passwords should be done where possible. They should also change their passwords on a regular basis and make sure to take advantage of any additional layers of security available such as biometrics, PIN and so on. By taking these steps, consumers should ensure their data is safe in spite of any attempted hacks."

 

Read the full article here.

 

 

Please use plain text.
DavidP1970
Posts: 3,243
Kudos: 1,653
Registered: ‎10-28-2012

Re: Yahoo Detects Mass Hack Attempt On Yahoo Mail, Resets All Affected Passwords

Security Experts have been warning us for years not to use the same password on more than one site. While most of the time it is only a single person who has multiple account exposure, this breach is a wake up call to millions all at one time.

Circular verification can also be a no no. (Using your Yahoo email to receive account reset emails for Gmail which recieves them for the Yahoo.


      

New to the Community? Register now and start posting!



Helpful Webroot Links:


Download (PC)   Download (Best Buy Subscription)   Submit Trouble Ticket   Account Console   User Guides   



"If you don't learn something new every day, you need to pay more attention. I often get my daily learning here so grab a chair and stay a while!"
WSA-Complete (Beta Tester), Toshiba Satellite L305, Intel Pentium Dual CPU at 1.87 GHz, 3 GB RAM With Windows 7 (x86) (Yes its old.. but it still usually works! : )
Please use plain text.