If you thought that it couldn’t get any worse for Yahoo this year, your wrong unfortunately. Its been found that back in 2013, more than one billion Yahooo! Accounts were breached and the personal information of its users were obtained. Information like, phone numbers, passwords, security questions and email addresses were lifted from the company.
Now, however, all that information is floating around the dark web and is up for sale. This was found by the cyber security firm, InfoArmor. They found the compromised information in August, at the time this information had been sold to three different parties for $300,000 each.
At the time of writing this information is still up for sale, but worst still, now that the breach has been made public, it is expected that the price will drop for this information. This information will be sold to cyber criminals to try and infect people with malware and put them up to ransom.
Yahoo! Has been under fire several times since the breaches have come to light, over 1.5 billion accounts have been exposed over a number breaches.
What can you do?
If you haven’t already, you need to change your password with Yahoo! And any other websites that you have used the same password with.
Always make sure you use a dedicated password for every website you visit online, this may sound like a lot of work to start with, but it becomes much easier when used with a password manager.
If you use a different password for all websites, this means that if a site is breached, your credentials are only affected and not for all sites that you have used that password with, thus reducing your exposure.
If you haven’t already look at signing up to the data breach notification service: https://haveibeenpwned.com/ this site will inform you if your email address has been found in any breaches, giving you a heads up.
Next, you should use a password manager like the following:
Hope this helps you stay safe, and remember, don’t reuse passwords.