A stash of almost two million usernames and passwords, stolen by cybercriminals from users of Facebook, Twitter, Google, Yahoo, LinkedIn and many other sites, has been uncovered.
And it makes for some sorry reading.
Google and Yahoo’s worldwide network of data centers are said to have been compromised by the NSA, according to a newly-leaked document.
Seriously, it will be good to see Yahoo finally enable SSL/HTTPS for all its webmail users. It’s just a shame that they have dragged their feet so much about doing it.
Sorry, in future you won’t be given a voucher for $12.50 to spend in the Yahoo Corporate Store if you find a critical vulnerability in a service used by hundreds of millions of internet users.
Such a risible bug bounty is unlikely to win Yahoo any friends and could – if anything – make it less likely that the site will gain the assistance of white-hats in future.
The new owners of recycled Yahoo email accounts are receiving private emails, containing personal information, not intended for them.
None of this would have happened if Yahoo hadn’t initiated the reckless, harebrained scheme in the first place.
“I don’t have a passcode on my phone”, says woman heading up company responsible for protecting privacy of hundreds of millions of internet users.
Yahoo tries to reassure users that it’s great email account giveaway makes sense.
But a closer examination shows that the whole idea is half-baked, and sounds impossible to pull off competently.
Yahoo says that if you haven’t logged into your Yahoo account for 12 months, and *don’t* log in by July 15th, they’re going to give other people the chance to grab it.
What a terribly stupid idea.
The call has gone out to Yahoo Japan’s 200 million users to change their passwords, after the company warned that it suspected hackers had managed to access a file containing 22 million user IDs.
It has taken Yahoo a ridiculously long time, but it is finally rolling out an option that will help protect users’ privacy when accessing their web-based email – HTTPS.
Hotmail lets down its over 350 million users when it comes to security, by not giving them an easy way to tell if their account has been accessed by unauthorised third parties.
Beware any emails which claim to come from firstname.lastname@example.org – it could be that you’re being targeted in an attack designed to steal your AOL, Gmail, Yahoo or Windows Live password.
Shouldn’t Outlook.com be giving users the option of having longer passwords?
That’s what Yahoo and Gmail do..
Ninja? Princess? 123456?
Too many internet users are making poor decisions when choosing their passwords.
Prosecutors are calling for nude photo hacker Christopher Chaney to be sentenced to six years in jail, and pay damages to exposed celebrities.