Some hackers attempted to access a number of Yahoo accounts recently. Yahoo didn't reveal the number of accounts have been in attack by hackers but the company said that attempt has already prompted all affected users to reset their passwords.
Jay Rossiter, senior vice-president of Platforms and Personalization Products said in a blog post that “Based on our current findings, the list of usernames and passwords that were used to execute the attack was likely collected from a third-party database compromise. We have no evidence that they were obtained directly from Yahoo’s systems. Our ongoing investigation shows that malicious computer software used the list of usernames and passwords to access Yahoo Mail accounts. The information sought in the attack seems to be names and e-mail addresses from the affected accounts’ most recent sent e-mails.”
Jai Rossiter indicated the following steps to protect users who are having Yahoo mail box:
- They are resetting passwords on affected accounts.
- Introducing second sign-in verification to allow users to re-secure their accounts.
- Federal law enforcement has been involved to find and prosecute the perpetrators responsible for this attack.
- Already taken additional measures to block attacks against Yahoo’s systems.
He recommended Yahoo Mail users to change their passwords regularly. Also he added that user should have passwords using variations of symbols and characters. It would be better not to use the same password on multiple sites or services.
He added that “Using the same password on multiple sites or services makes users particularly vulnerable to these types of attacks, they regret this has happened and want to assure our users that we take the security of their data very seriously.”