Yahoo breach? Watch this

Share This Page

Was your information exposed in the Yahoo data breach? Change your Yahoo password right away. Then, check out this new data breach video from the FTC.

The video walks you through the steps to take if your information was part of a data breach:

What if your online login or password was exposed? IdentityTheft.gov/databreach covers all that and more. For an online login or password – Log in to your account and change your password. If you use the same password other places, change those too. Don’t forget to change those security questions too.

According to Yahoo, the breached information may have included names, email addresses, telephone numbers, dates of birth, passwords, and security questions. Yahoo believes this information was stolen in late 2014. So, if you had a Yahoo account on or before 2014, you could be affected. Yahoo will be sending notification to affected users by email. Yahoo’s message will not ask you to click on a link or give any personal information.

If you’d like more information about the Yahoo data breach – including how to recognize whether a breach notification email claiming to be from Yahoo is legitimate – visit Yahoo’s Account Security Issues FAQs.

If you learn that someone has misused your personal information, go to IdentityTheft.gov to report identity theft and get a personal recovery plan. Because recovering from identity theft – and data breaches – is easier with a plan.

Comments

Yahoo shut my mail down late june of 2004. Yahoo had the worst customer service, along with microsoft, and not finding any help on what to do to recover (the help was 3 layers deep) I lost all my emails, when yahoo locked me out of them permanently. I just saw on Yahoo that I had changed my password on July 1, 2004 because of this.

I had different names using my Yahoo email address around late 2015 and more of different usernames using it. Ikept getting thousands of spam messages even addressed to me showing my email address but each with different user name. but with Concerned they were using it to spam and for criminal purposes, I changed my password. Then I got many text messages, especially in the wee hours of the morning when and always got my heart pumping because those times no one except my family in Asia would call in the case of death in the family. I dreaded going to bed. I never replied to any of these, noted their phony phone numbers and yahoo email address, reported to FTC but finally when I got spam messages from my Yahoo email address in my personal email program, addressed to my mail Gmail account, I couldn't control the Spam or Junk filters, because connected to recovering Yahoo account this second email address was also hijacked. That is the address I use for personal medical, bank and private email purposes. Every one of those messages also addressed me with my real full name. So I got rid of the Yahoo account. Somewhere floating around both email addresses are available for whatever the hijacking were meant for. The Yahoo spam stopped immediately, but I still get some form of scams and suspicious email through my personal account, whose password I have changed but cannot get rid of it because it would require I used the secondary Yahoo email address to verify any changes I have made. Life is uneasy when you have your full name available to these thieves. I felt it is Yahoo that have not secured their servers effectively if at all. so too Google spies on users and so, sellers of email addresses could range from employees to corporations which in turn sell to other corporations (not forgetting employees in these corporations may also be sellers of email addresses) and somewhere in this chain, even the corporations' servers have not put in place adequate security measures. This is my personal deduction because corporations I don't deal with also send me solicitations and email scams and callers from other states with personal phone numbers, current or defunct call me as well, most of them with no messages, then hang up. I block these phone numbers at my phone service provider online, but they are only blocked for 90 days and there is a limit to the number of numbers I can block.

This past Wednesday (Sept. 21st), I was able to read messages in my Yahoo account, but nothing happened when I tried to send messages or to select messages for deletion. On several occasions both Wednesday and Thursday, when I initially tried to log into my account, I got messages from Kaspersky (my anti-virus program) that the Yahoo certificate could not be confirmed.

Even today, the yahoo website appears to be compromised. When I open up yahoo (even in Kasperky's protected mode), I get the following message: "Can't guarantee the authenticity of the domain to which encrypted connection is established." It follows by saying that the certificate is not up to date. The attempted connection shows the URL to be COMET. yahoo.com        even though it shows at the top of the screen as     .yahoo. com.

There were different names using my Yahoo email address around late 2015 and more of different usernames using it. I kept getting thousands of spam messages even addressed to me showing my email address but each with different user name.

but with Concerned they were using it to spam and for criminal purposes, I changed my password. Then I got many text messages, especially in the wee hours of the morning when and always got my heart pumping because those times no one except my family in Asia would call in the case of death in the family. I dreaded going to bed.

I never replied to any of these, noted their phony phone numbers and yahoo email address, reported to FTC but finally when I got spam messages from my Yahoo email address in my personal email program, addressed to my mail Gmail account, I couldn't control the Spam or Junk filters, because connected to recovering Yahoo account this second email address was also hijacked. That is the address I use for personal medical, bank and private email purposes. Every one of those messages also addressed me with my real full name.

So I got rid of the Yahoo account. Somewhere floating around both email addresses are available for whatever the hijacking were meant for. The Yahoo spam stopped immediately, but I still get some form of scams and suspicious email through my personal account, whose password I have changed but cannot get rid of it because it would require I used the secondary Yahoo email address to verify any changes I have made. Life is uneasy when you have your full name available to these thieves. I felt it is Yahoo that have not secured their servers effectively if at all. so too Google spies on users and so, sellers of email addresses could range from employees to corporations which in turn sell to other corporations (not forgetting employees in these corporations may also be sellers of email addresses) and somewhere in this chain, even the corporations' servers have not put in place adequate security measures.

This is my personal deduction because corporations I don't deal with also send me solicitations and email scams and callers from other states with personal phone numbers, current or defunct call me as well, most of them with no messages, then hang up. I block these phone numbers at my phone service provider online, but they are only blocked for 90 days and there is a limit to the number of numbers I can block.

I tried to change my password due to the yahoo resent breach of 2016 and now I can't use my email with the old or new password?

March 10th, 2016 : I had Yahoo for 8 years and I was hacked by Yahoo ! Yahoo Customer Service was very Poor to Myself ! I went to a different E - Mail Server for toughter Cyber Security !!!!

I didn't make account with yahoo yet, How they can get my name?

The hack affected people who have accounts with Yahoo. The information was stolen from Yahoo in late 2014.

If you don't have a Yahoo account, this hack should not affect you.

Years ago, Yahoo was deemed as an insecure site, and tracks and uses the consumers info, so why are people surprised that their free email is hacked...Is something that's free worth the risk? Consumers need to be made more aware of FREE email accounts, and exactly what protection they are using. Sometimes even paid for protection: anti-virus, phishing, malware, spyware,etc is vulnerable.

A few years ago, supposedly protected goverment employees (thousands) accounts were hacked into, compromising very personal and medical info. And they were using a professional and secured protection. How did that happen? Also, many times, the cyber criminals gather the hacked info and wait years to attack the accounts, just when everyone thinks they are safe. It is this false sense of security, that "lull" of thinking that everything must be alright because nothing has happened yet,that leads to criminal activity. Consumers have to be made aware of this, to be vigilent ALL THE TIME, and stay updated with any breaches/new hacks/viruses. And use HTTPS when searching. Criminals know all the features: why can't they be traced and revealed also? Who is "minding the store" of law abiding consumers?

I read an article about this since I have Yahoo search. I have att.net. It took me to a site where I could check if I had been hacked. I can't find it any more. Don't remember the site. Wish I did I would pass it along. It said I didn't have anything taken because their were no files. It was a sub-account that I have never used. I still don't understand why it didn't go through my att.net acct. I guess I don't have anything of importance in my accts. I hope that is the case anyway. I didn't get a letter from Yahoo either. I was also wondering why Lifelock is still able to advertise on TV. I saw one last night.

Buggy I agree with you. I have been part of so many hacks but never any thing happen (as of yet). I have my back set to alert me on all accts. I have had letters from Home Depot a year or so ago. This Yahoo one has me puzzled. I will just cancel the sub-acct. and get a new search provider. I heard to Amazon.com is the latest target so watch out there for things that don't look right. Like if it comes from a person. Amazon is giving refunds to people and it is rampant. Don't click on anything go right to Amazon.com and your acct. if you have one. Heads up people we have to be on guard. FTC helps but I didn't see anything about Amazon as of yet.

Shirl B.,
The information to protect yourself is out there, and cyber criminals probably read those articles too. People need to do lots of research on how to be safe online, with cell phones, debit cards,etc..before they use their electronics. There are just some things like banking by cellphone that just is not safe! If someone looks at/takes/finds your phone... And don't do automatic log in to ANY device-it is not a convenience -it is an open door to anyone who gets ahold of your device! Alerts for everything are good, especially double security features. Always check with companies about their sharing policies before ordering anything and have it documented that they do not share. Keep track of EVERYTHING.
Stay on your accounts. Keep info in a safe place. Thanks for the Amazon info.I will look into this: is it a scammer trying to use Amazon's name? phishing and scammers have tried this with National Grid and Bank of America, IRS...call the company directly before clicking on any links and report the activity. Copy the scamming/phishing address down and report it exactly as shown.
Pass along the FTC to everyone you know. We do have to be on guard...most of this scamming is done from overseas/other countries and too many innocent people get taken. You don't have to spend alot to be protected-the better companies have security measures.Use a good internet/email provider.Question everything. Pass cyber safety info to everyone you know.It will slow the cyber criminals down somewhat,and be careful where your ID goes to.It's a terrible feeling to know no one can trace these people.

to Shirl B.
I read something about Lifelock too; not as secure as paid customers thought.. I guess a company can still do business...look at Target's breach of customer's info..they said they put in place a better security after the breach...they are still in business too. I would like to know WHY the companies wait until something is stolen/breached before they use more secure measures..like I stated..who is "minding the store" of these companies that we put our trust in?

Data wasn't compromised. Yahoo made this up to force everyone to give them their cell phone numbers. If you don't they keep you locked out of your email account. Don't do it!

Leave a Comment

Comment Policy