Story image

Yahoo email under new wave of security attacks...

04 Feb 14

Yahoo has warned that its email service is under a new wave of security attacks, urging users to display extreme caution when checking messages.

As security breaches unfortunately become a more regular occurrence, the company recently identified a" coordinated effort to gain unauthorized access to Yahoo Mail accounts."

Upon discovery, Yahoo says it "took immediate action to protect our users, prompting them to reset passwords on impacted accounts."

"Based on our current findings, the list of usernames and passwords that were used to execute the attack was likely collected from a third-party database compromise," says Jay Rossiter, SVP, Platforms and Personalization Products, Yahoo.

"We have no evidence that they were obtained directly from Yahoo’s systems. Our ongoing investigation shows that malicious computer software used the list of usernames and passwords to access Yahoo Mail accounts.

"The information sought in the attack seems to be names and email addresses from the affected accounts’ most recent sent emails."

What Yahoo is doing to protect their users:

* We are resetting passwords on impacted accounts and we are using second sign-in verification to allow users to re-secure their accounts. Impacted users will be prompted (if not, already) to change their password and may receive an email notification or an SMS text if they have added a mobile number to their account.

* We are working with federal law enforcement to find and prosecute the perpetrators responsible for this attack.

* We have implemented additional measures to block attacks against Yahoo’s systems.

What you can do to help keep your accounts secure:

In addition to adopting better password practices by changing your password regularly and using different variations of symbols and characters, users should never use the same password on multiple sites or services.

Using the same password on multiple sites or services makes users particularly vulnerable to these types of attacks.

"We regret this has happened and want to assure our users that we take the security of their data very seriously," Rossiter adds.

Royole's FlexPai: So bendable phablets are a reality now
A US-based firm called Royole is delivering on that age-old problem of not being able to fold up your devices (who hasn't ever wished they could fold their phone up...)
Hands-on review: Having fun in Knowledge is Power: Decades and Chimparty
They don’t revolutionise social video gaming, but they are enjoyable enough to occupy you during a wet weekend. 
Kiwis losing $24.7mil to scam calls every year
The losses are almost five times higher compared to the same period last year, from reported losses alone.
Tile's Mate & Pro Bluetooth trackers land in NZ
If your car keys (or your tablet) have disappeared into the void at the back of the couch or if you left them somewhere in your car, retracing your steps to find them could be a thing of the past.
Government still stuck in the past? Not on GovTech's watch
What exactly is GovTech and what’s been happening in our capital city?
"Is this for real?" The reality of fraud against New Zealanders
Is this for real? More often than not these days it can be hard to tell, and it’s okay to be a bit suspicious, especially when it comes to fraud.
Hands-on review: The iPhone Xs
The iPhone Xs is a win that brought numerous new and exciting features to the market.
How much does your Amazon Prime Video subscription really get you?
For our NZ$8.90 per month, the average cost per title is US$0.00126 - but we only really get a choice of 416 TV shows and 4321 movies. Choice is a little bit limited compared to other countries.