Yahoo reported on Wednesday (December 14th) that it has identified a new breach that occurred in August 2013 and involved data associated with more than one billion user accounts; double the number affected in a different breach disclosed in September 2016. Yahoo said it believed the latest incident was likely distinct from the breach disclosed in September 2016, when it said information associated with at least 500 million user accounts was stolen in 2014. The 2014 breach was believed to be the world’s biggest known cyber breach by far. Yahoo said the stolen user account information may have included names, e-mail addresses, telephone numbers, dates of birth, hashed passwords and, in some cases, encrypted or unencrypted security questions and answers. Read more about this incident @ the following link: http://www.nytimes.com/2016/12/14/technology/yahoo-hack.html?_r=0
If you have a Yahoo account, resetting your password and other steps are advised. The following link has suggestions on how to secure your Yahoo account: http://www.cnbc.com/2016/12/15/if-youve-ever-created-a-yahoo-account-take-these-steps-immediately-to-protect-your-data.html
Yahoo is not the first major company that has fallen victim to this kind of large-scale hack nor will it be the last. While these types of cyber security risks are typically out of our control, the cyber security risks that oftentimes carry the greatest impacts to our daily lives are much more preventable with some good; solid practices which are captured by the national cyber security campaign: “Stop, Think, Connect.” Take a look at the “best practices” below and conduct a self-assessment how many of these practices you currently employ. Challenge yourself to adopt at least a couple of these to further protect yourself and your equipment and contributing to the security of this technology for all. Please visit http://www.stopthinkconnect.org for more information.