Post Reply 
[News] Yahoo Email hacked passwords - change your Yahoo email password
Author Message
SuperSleeper Offline

Administrators

Posts: 9,961
Joined: Feb 2012

Machine: PR System One REMstar Auto (DS560)
Mask Type: Nasal pillows
Mask Make & Model: ResMed Mirage Swift II
Humidifier: none
CPAP Pressure: 12.5 - 18.5 cmH20 (auto range)
CPAP Software: SleepyHead

Other Comments: Have diabetes Type II

Sex: Male
Location: Illinois, USA

Post: #1
Yahoo Email hacked passwords - change your Yahoo email password
Just a heads up for those that have Yahoo email accounts... might want to change your email password if you use Yahoo mail.



Quote:Yahoo Confirms Theft of Passwords from Users

--Yahoo confirms 'old' database was compromised

--Hacker group D33Ds claims responsibility

--Exposed members registered using Gmail, AOL, other email accounts

(Adds details of other recent hacks, other information, in the fourth and ninth through 11th paragraphs.)

By Drew FitzGerald

Yahoo Inc. (YHOO) said it is investigating a data breach that allowed a hacker group to download about 453,000 unencrypted user names and passwords, a revelation that also threatened users' email accounts with other providers.

The Sunnyvale, Calif., company said the compromised user information belongs to Yahoo Voices, a self-publishing service once known as Associated Content. A hacking organization called D33Ds Co. posted the stolen data on its website and appended a note describing the download "as a wake-up call and not as a threat." The group said it aims to expose Yahoo's vulnerabilities.

Yahoo noted that less than 5% of the Voices accounts had still-valid passwords.

The hacked file also included the email addresses--such as those from AOL Inc. (AOL) and Google Inc.'s (GOOG) Gmail--that people used to register for the Yahoo Voices service. The passwords listed were those used to log into Yahoo Voices, but in some cases also were the same ones used for the email addresses.

AOL and Gmail said they responded by finding out which customers were still using the compromised Yahoo passwords and have prompted affected customers to change their logins.

AOL noted that only about 7% of the roughly 25,000 AOL Mail addresses revealed in the Yahoo breach had the same passwords on their email accounts.

"We have definitely had to deal with this in the past," said David Temkin, AOL's mail and mobile chief. He said AOL took similar actions when social-network LinkedIn Corp. (LNKD) earlier this year disclosed that 6.5 million of its encrypted user passwords were stolen.

Yahoo said in an emailed statement it is fixing the vulnerability that led to the data breach. The company also said it is changing affected users' passwords and notifying companies with accounts that might have been compromised.

Constellation Research analyst Ray Wang said Yahoo apparently fell prey to an extremely common kind of database attack that most companies typically take steps to combat.

"This isn't supposed to happen," he said, calling the exploited flaw "an easy thing to prepare for."

The breach came at an awkward time for Yahoo executives, who are working to regain investors' trust after former Chief Executive Scott Thompson resigned in May over embellishments on his resume. The company held its annual shareholder meeting Thursday.

Shares of Yahoo fell 11 cents to $15.69.

Yahoo's latest first-quarter earnings rose 28% with help from its investments in Asian Internet companies, but total revenue inched up about 1%. Interim CEO Ross Levinsohn is seeking to raise the top line by revving up advertisement sales on Yahoo's media websites, though it is still unclear if he will remain at Yahoo's helm with a permanent title.

Yahoo bought Associated Content in 2010 for a reported $100 million. The content platform allows users to write articles, reviews or opinion pieces and pays them based on the number of views the material attracts. The Internet giant rebranded its acquisition as the Yahoo Contributor Network and now offers content through a portal called Yahoo Voices.

fair use from:
http://online.wsj.com/article/BT-CO-20120712-714703.html

SuperSleeper
Apnea Board Administrator
www.ApneaBoard.com


INFORMATION ON APNEA BOARD FORUMS OR ON APNEABOARD.COM SHOULD NOT BE CONSIDERED AS MEDICAL ADVICE. ALWAYS SEEK THE ADVICE OF A PHYSICIAN BEFORE SEEKING TREATMENT FOR MEDICAL CONDITIONS, INCLUDING SLEEP APNEA. INFORMATION POSTED ON THE APNEA BOARD WEB SITE AND FORUMS ARE PERSONAL OPINION ONLY AND NOT NECESSARILY A STATEMENT OF FACT.

07-12-2012 07:09 PM
Find all posts by this user Post Reply Quote this message in a reply

Donate to Apnea Board
SuperSleeper Offline

Administrators

Posts: 9,961
Joined: Feb 2012

Machine: PR System One REMstar Auto (DS560)
Mask Type: Nasal pillows
Mask Make & Model: ResMed Mirage Swift II
Humidifier: none
CPAP Pressure: 12.5 - 18.5 cmH20 (auto range)
CPAP Software: SleepyHead

Other Comments: Have diabetes Type II

Sex: Male
Location: Illinois, USA

Post: #2
RE: Yahoo Email hacked passwords - change your Yahoo email password
I'll leave this thread up on the Main Forum for 2-3 days, then move it to Off-Topic once everyone's had a chance to read it.

Please read the above article, because it can have an effect on your Hotmail and Gmail account also, if you've subscribed to some of Yahoo's services with your non-Yahoo email address.

Another possible result of this hacking attack (be careful folks, never reply to one of these emails or click on a link in the email):

Quote:Attack on Yahoo e-mail may spawn more phishing scams

You now have one more reason to be wary of viral e-mail slipping into your inbox this summer.

Yahoo on Thursday confirmed the theft of 450,000 Yahoo users' e-mail addresses and passwords. The thieves posted the data on a hackers' website with a warning for Yahoo, which stored the information in plain text, to beef up security.

The Yahoo breach followed by two days the disclosure of a similar hack of Formspring. The social-networking site on Tuesday announced it was taking steps to disable nearly 30 million registered users' passwords after someone breached its databases and posted 420,000 encrypted passwords on the Web. And in early June, encrypted passwords for nearly 6.5 million LinkedIn users turned up on a Russian hacker forum.

Stolen e-mail usernames and passwords have become like gold in the cyberunderground. That's because access to online financial accounts, social networks and business networks often revolve around e-mail logins.

What's more, many people tend to use weak passwords, or the same passwords, for multiple accounts, security experts say.

Cybercriminals have become adept at correlating a victim's Web e-mail passwords to his or her workplace accounts. This can help them carry out scams to get e-mail recipients to click on a viral Web link; such scams make use of e-mail that appears to come from a trusted source, says Marcus Carey, security researcher at Rapid7.

Yahoo noted that only 5% of the publicly posted e-mail account logins were valid. However, the hackers who claimed credit for the Yahoo breach may have posted only some of their booty, says Jim Fenton, chief security scientist at identity management firm OneID. "They could be out to improve their reputation in the underground market to get more business later on," says Fenton. "We don't know if 450,000 passwords is everything or just a fraction of what they've got."

Companies are also at heightened risk. "If you're running a large network, there's a good chance one of your users' passwords has fallen into the hands of someone who intends to use it to access your network by impersonating your employee," says Tom Cross, research director at network security firm Lancope. "We're beginning to see that passwords are an increasingly suspect security tool,"

Individuals can protect themselves and the firms they work for by using strong passwords, changing them often, and using different passwords for different accounts, says Grayson Milbourne, researcher at security firm Webroot.

fair use from:
http://www.usatoday.com/tech/news/story/...56162694/1

SuperSleeper
Apnea Board Administrator
www.ApneaBoard.com


INFORMATION ON APNEA BOARD FORUMS OR ON APNEABOARD.COM SHOULD NOT BE CONSIDERED AS MEDICAL ADVICE. ALWAYS SEEK THE ADVICE OF A PHYSICIAN BEFORE SEEKING TREATMENT FOR MEDICAL CONDITIONS, INCLUDING SLEEP APNEA. INFORMATION POSTED ON THE APNEA BOARD WEB SITE AND FORUMS ARE PERSONAL OPINION ONLY AND NOT NECESSARILY A STATEMENT OF FACT.

07-12-2012 07:57 PM
Find all posts by this user Post Reply Quote this message in a reply
cbramsey Online

Advisory Members

Posts: 900
Joined: Mar 2012

Machine: ResMed S9 Autoset
Mask Type: Nasal mask
Mask Make & Model: ResMed Mirage FX
Humidifier: ResMed H5i with ClimateLine
CPAP Pressure: 6 - 12
CPAP Software: ResScan

Other Comments: Supreme Overlord of Web Darkness

Sex: Male
Location: NC, USA

Post: #3
RE: Yahoo Email hacked passwords - change your Yahoo email password
I decided to delete my Yahoo email address.

Hack that pondscum!!!! Too-funny

INFORMATION ON APNEA BOARD FORUMS OR ON APNEABOARD.COM SHOULD NOT BE CONSIDERED AS MEDICAL ADVICE. ALWAYS SEEK THE ADVICE OF A PHYSICIAN BEFORE SEEKING TREATMENT FOR MEDICAL CONDITIONS, INCLUDING SLEEP APNEA. INFORMATION POSTED ON THE APNEA BOARD WEB SITE AND FORUMS ARE PERSONAL OPINION ONLY AND NOT NECESSARILY A STATEMENT OF FACT.
07-12-2012 08:16 PM
Find all posts by this user Post Reply Quote this message in a reply

Donate to Apnea Board
SuperSleeper Offline

Administrators

Posts: 9,961
Joined: Feb 2012

Machine: PR System One REMstar Auto (DS560)
Mask Type: Nasal pillows
Mask Make & Model: ResMed Mirage Swift II
Humidifier: none
CPAP Pressure: 12.5 - 18.5 cmH20 (auto range)
CPAP Software: SleepyHead

Other Comments: Have diabetes Type II

Sex: Male
Location: Illinois, USA

Post: #4
RE: Yahoo Email hacked passwords - change your Yahoo email password
(07-12-2012 08:16 PM)cbramsey Wrote:  I decided to delete my Yahoo email address.

Hack that pondscum!!!! Too-funny

The ultimate solution. Well-done

SuperSleeper
Apnea Board Administrator
www.ApneaBoard.com


INFORMATION ON APNEA BOARD FORUMS OR ON APNEABOARD.COM SHOULD NOT BE CONSIDERED AS MEDICAL ADVICE. ALWAYS SEEK THE ADVICE OF A PHYSICIAN BEFORE SEEKING TREATMENT FOR MEDICAL CONDITIONS, INCLUDING SLEEP APNEA. INFORMATION POSTED ON THE APNEA BOARD WEB SITE AND FORUMS ARE PERSONAL OPINION ONLY AND NOT NECESSARILY A STATEMENT OF FACT.

07-12-2012 09:02 PM
Find all posts by this user Post Reply Quote this message in a reply
Post Reply 


Possibly Related Threads...
Thread: Author Replies: Views: Last Post
Grin [News] Your CPAP can't help you with Email Apnea ApneaNews 5 793 01-04-2015 07:04 PM
Last Post: trish6hundred
  How to change the time. libbyau 18 3,559 01-17-2014 06:39 PM
Last Post: cbramsey
  How many forum posters does it take to change a light bulb? Cutter 12 4,447 11-06-2012 06:27 PM
Last Post: SuperSleeper
  Example Of Why Health care Needs To Change Schnauzers 5 4 1,722 09-29-2012 01:27 AM
Last Post: Schnauzers 5
  BEST EMAIL SOFTWARE? TorontoCPAPguy 17 5,352 06-01-2012 05:45 PM
Last Post: mjbearit
  Employers ask job applicants for their Facebook passwords greatunclebill 0 1,346 03-21-2012 10:16 AM
Last Post: greatunclebill

Forum Jump:

Who's Online (Complete List)