Yahoo investigating reported mass password breach

Time to change......everything! Oy! 

All done.

Yes... happened through spam.

I'd recommend changing passwords soonest.

I was sending spam the other day, so I have already changed mine. 

The breach/leak has been confirmed by Yahoo and further reported .....

The New York Times reports that those credentials were used not only for Yahoo! services but to services such as Gmail, AOL, Hotmail, Comcast, MSN, SBC Global, Verizon, Bellsouth and Live.com.

Here is a link set up through Sucuri Malware Labs where you can enter your yahoo email to see if yours was one of the 400k that was breached/posted on line.

http://labs.sucuri.net/?yahooleak

Damn yahoos....

I've received TONS of spam from randomly generated Yahoo emails for a long time.
Would be nice if they vamped up their security a bit - unless offcause the yoyos are getting paid to ignore it, or for sending out all the spam themselves.

Thanks PO for the link. Everything said Good for me.

I checked with the link, it said I was good this time around.  Not long ago I had to change my password because (as a few of you know, you got the spam) my account was hacked. A check of traffic with Yahoo mail showed my account was accessed  in Poland.

I did also, and said I was good as well.

WebGizmos got a spam mail from me anyway... after I changed my pw again. 

From this I can only conclude that the list published by the hackers was incomplete or deliberately misleading.

So... if you have a Yahoo email, best to change your pw and not put your eggs in the 'I checked' basket.

The breakdown of the passwords is . . stunning.

A sample:

Top 10 passwords

1. 123456 = 1666 (0.38%)
2. password = 780 (0.18%)
3. welcome = 436 (0.1%)
4. ninja = 333 (0.08%)
5. abc123 = 250 (0.06%)
6. 123456789 = 222 (0.05%)
7. 12345678 = 208 (0.05%)
8. sunshine = 205 (0.05%)
9. princess = 202 (0.05%)
10. qwerty = 172 (0.04%)

 
Top 10 base words

1. password = 1373 (0.31%)
2. welcome = 534 (0.12%)
3. qwerty = 464 (0.1%)
4. monkey = 430 (0.1%)
5. jesus = 429 (0.1%)
6. love = 421 (0.1%)
7. money = 407 (0.09%)
8. freedom = 385 (0.09%)
9. ninja = 380 (0.09%)
10. writer = 367 (0.08%)

More: http://pastebin.com/2D6bHGTa

Use something like LastPass to generate better passwords.

I only use strong ones, Zu. Still, what happened, happened:

> Date: Thu, 12 Jul 2012 14:53:57 -0700
> From: amnb47@yahoo.com
> Subject: Re2:
> To:
> 
> 
> How are you getting on?
> http://documentarios.org/sohuv.php?cymsubpage715
> 
> 
> 
> ______________
> "I is, is I? Well, you answer me dis: Didnt you tote out de line in decanoe fer to make fas to de tow-head?No, I didnt." (c) adalinda aekerman
> Thu, 12 Jul 2012 22:53:57

LAST PASS ROCKS! And it's free for your laptop and desktop. (Mobile version has a monthly fee of 1.99)

I finally got my wife to use it and she loves it for creating passwords and the convenience of the automatic log-ins. Also that it requires a master password to access it, so all her passwords are secure if her laptop is stolen or lost. 

It's available as an add-on for Firefox, Opera, and Chrome. I haven't tried it on any other browsers.

LAST PASS

I'll look at LastPass...thanks guys!  Sucuri says I'm ok too...but...

And it has been breached as well.

http://news.cnet.com/8301-1009_3-20060464-83.html

Thank you, Sir ...