Menu
Yahoo resets passwords after Mail attack

Yahoo resets passwords after Mail attack

Yahoo suspects usernames and passwords were stolen from an unidentified third-party database

Marissa Mayer speaking at CES

Marissa Mayer speaking at CES

Yahoo has been resetting email accounts that were targeted in an attack apparently aimed at collecting information from people's recently sent messages, the company said.

The list of usernames and passwords used for the attack was likely collected when another company's database was breached, Jay Rossiter, a Yahoo senior vice president, said in a blog post. He didn't name the third party or say how many accounts were affected.

"We are working with federal law enforcement to find and prosecute the perpetrators responsible for this attack," Rossiter wrote.

The hackers used a malicious software program to access Mail accounts with the stolen usernames and passwords, he wrote.

Free email services with large user bases from companies like Yahoo, Google and Microsoft are a rich target for hackers, who use compromised accounts to deliver spam, launch attacks on other users and collect information.

Rossiter didn't say when the attack occurred, and a Yahoo spokeswoman said the company could not share more information while the investigation is ongoing.

Yahoo said it was resetting passwords on the affected accounts and using second sign-in verification to let users resecure their accounts. The feature sends a one-time passcode to a user's phone that must be entered into a Web-based form to access the account.

Yahoo has also "implemented additional measures to block attacks against Yahoo's systems," Rossiter wrote.

He advised that users change their passwords regularly and not reuse the same password for their Yahoo Mail on other Web services.

"We regret this has happened and want to assure our users that we take the security of their data very seriously," Rossiter wrote.

Send news tips and comments to jeremy_kirk@idg.com. Follow me on Twitter: @jeremy_kirk


Follow Us

Join the newsletter!

Error: Please check your email address.

Tags Yahoosecurity

Featured

Slideshows

Sizing up the NZ security spectrum - Where's the channel sweet spot?

Sizing up the NZ security spectrum - Where's the channel sweet spot?

From new extortion schemes, outside threats and rising cyber attacks, the art of securing the enterprise has seldom been so complex or challenging. With distance no longer a viable defence, Kiwi businesses are fighting to stay ahead of the security curve. In total, 28 per cent of local businesses faced a cyber attack last year, with the number in New Zealand set to rise in 2017. Yet amidst the sensationalism, media headlines and ongoing high profile breaches, confusion floods the channel, as partners seek strategic methods to combat rising sophistication from attackers. In sizing up the security spectrum, this Reseller News roundtable - in association with F5 Networks, Kaspersky Lab, Tech Data, Sophos and SonicWall - assessed where the channel sweet spot is within the New Zealand channel. Photos by Maria Stefina.

Sizing up the NZ security spectrum - Where's the channel sweet spot?
Show Comments