Your forum username:
Do you already have an account?
Forgot your password?
  • Log in or Sign up


    Welcome to Sky User - The Unofficial Support Forum for everything Sky! - Proudly helping over 65k members.


    Advertisement

    Page 1 of 2 12 LastLast
    Results 1 to 10 of 14
    Like Tree3Likes

    'One billion' affected by Yahoo hack

    This is a discussion on 'One billion' affected by Yahoo hack within the Sky Email and Portal Log-in forums, part of the Sky Broadband help and support category; 'One billion' affected by Yahoo hack - BBC News Yahoo has said more than one billion user accounts may have ...

    1. #1
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Other ISP
      Router: Non-Sky Router
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,242
      Thanks
      848
      Thanked 2,240 Times in 2,103 Posts

      'One billion' affected by Yahoo hack

      'One billion' affected by Yahoo hack - BBC News
      Yahoo has said more than one billion user accounts may have been affected in a hacking attack dating back to 2013.

      The internet giant said it appeared separate from a 2014 breach disclosed in September, when Yahoo revealed 500 million accounts had been accessed.

      Yahoo said names, phone numbers, passwords and email addresses were stolen, but not bank and payment data.

      The company, which is being taken over by Verizon, said it was working closely with the police and authorities.

      Yahoo said it "believes an unauthorised third party, in August 2013, stole data associated with more than one billion user accounts".

      The breach "is likely distinct from the incident the company disclosed on September 22, 2016".

      However, the three-year-old hack was uncovered as part of continuing investigations by authorities and security experts into the 2014 breach, Yahoo said.

      Account users were urged to change their passwords and security questions.

      The California-based company has more than a billion monthly active users, although many people have multiple accounts. There are also many accounts that are little used or dormant.

      Vulnerability


      Cyber security expert Troy Hunt told the BBC: "This would be far and away the largest data breach we've ever seen. In fact, the 500 million they reported a few months ago would have been, and to see that number now double is unprecedented."

      Yahoo said
      some of the breach could be linked to state-sponsored activity, as with the previous attack.

      Prof Peter Sommer, a specialist in digital forensics at Birmingham City University, told the BBC he could be persuaded it was a state-sponsored hack, "but at the moment I'm not".

      "What on earth is a state going to do with one billion accounts of ordinary users? That's the difficulty I have," he said.

      In September, when Yahoo disclosed the 2014 data breach, the company said information had been "stolen by what we believe is a state-sponsored actor", but it did not say which country it held responsible.

      Yahoo knew of 'state-backed' hack in 2014


      Verizon: Yahoo data breach may hit deal


      Senators demand answers over Yahoo hack


      The latest disclosure raises fresh questions about Verizon's $4.8bn proposed acquisition of Yahoo, and whether the US mobile carrier will try to modify or abandon its bid.

      'Pattern of serious failures'


      If the hacks cause a user backlash against Yahoo, the company's services would not be as valuable to Verizon.

      Verizon said that it would evaluate the situation as Yahoo investigates and would review the "new development before reaching any final conclusions".

      Mr Hunt said that Verizon allegedly cut its valuation of Yahoo by $1bn - almost 20% of the original bid's value - after the news emerged of the 2014 attack.

      The latest revelations "will surely impact that valuation even further, not just because of the scale of it, but because it shows a pattern of serious failures on Yahoo's behalf", he said.

      It is a further embarrassment to a company that was once one of the biggest names of the internet but which has failed to keep up with rising stars such as Google and Facebook.

      Yahoo was once deemed to be worth $125bn during the dotcom boom. Various attempts to revive its fortunes have failed to stem its decline.



      Analysis: Dave Lee, North America technology reporter


      Good grief, can things get any worse for Yahoo? A complete disaster. Embarrassing. Negligent?

      We've come to accept that even the best systems get attacked by cyber criminals. But repeatedly? And in such great numbers? Something was seriously, seriously wrong.

      Looking to the future, this is yet more concern for Verizon, which agreed to buy Yahoo before all of these disasters were made public.

      It wanted the company because of its huge user-base and advertising reach. How many of those users are going to stick around when this kind of thing is going on? What's in it for them?

      There's talk of a discount on the $4.8bn Verizon agreed to pay out. It's a game of how-low-can-you-go in the new year, you'd think.
      Comment: If you didn't change your passwords back in September, do so now.


    2. Advertisement
    3. #2
      lettice's Avatar
      lettice is offline Sky User Member
      Exchange: 0.4 mile away and cabinet 350 yards
      Broadband ISP: Sky Broadband Superfast + Boost
      Router: Sky Broadband Hub SR203
      Sky TV: SkyQ2tbV2+mini
      Join Date
      Jun 2011
      Location
      England
      Posts
      2,038
      Thanks
      12
      Thanked 191 Times in 182 Posts

      Re: 'One billion' affected by Yahoo hack

      Just ditch your yahoo accounts. I did.
      If you had a sky yahoo email account you would have been forced to change it anyway, back in September.
      jrfer likes this.

    4. #3
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Other ISP
      Router: Non-Sky Router
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,242
      Thanks
      848
      Thanked 2,240 Times in 2,103 Posts

      Re: 'One billion' affected by Yahoo hack

      Let's see...

      Yahoo! - Hacked a few years ago and kept it all hush hush. A US company who will often hand over your emails to the us Government
      Hotmail/Outlook/Livemail - hosted not by Microsoft, who hand over anything to the US Government
      Google - Some people are saying that this is not as secure as was once thought. Again a US company who must hand over your emails to the US Government

      Sky's email service is free. It was previously a Google based service and is now a Yahoo! based service. BT went the other way but due to various issues many of their email accounts are still based with Yahoo!.

      There are other free email service providers...

      8 best free email service 2016/2017 | Best email service - Feature - PC Advisor

      The alternative would be to run your own mail server. This would be outside the knowledge base and pocket of many people. The advantage would be that you have complete control over the server. The drawback would be that you would be responsible for keeping everything up to date and paying any running costs. You would be able to set your own attachment limits and set up storage limits more suitable to your needs.

      PlusNet Fibre since Jan 2021
      Previously Sky Fibre & Sky BB since 2010.

    5. #4
      marjohn56's Avatar
      marjohn56 is offline Sky User Member
      Exchange: Cricklewood
      Broadband ISP: ZEN
      Router: Billion 8800NL(Modem Bridge) + OPNsense 21.7.a*
      Sky TV: Sky Q 2Tb+Mini
      Join Date
      Dec 2011
      Posts
      1,811
      Thanks
      13
      Thanked 144 Times in 135 Posts

      Re: 'One billion' affected by Yahoo hack

      Quote Originally Posted by Scubbie View Post
      The alternative would be to run your own mail server.
      And that's why I run my own mail server, It's secure and I have mail going back years with no real limit on the amount of storage I use. Currently standing at about 6Gb and that's just two of us. As you correctly point out though, security is key and I pay for external spam filtering and an outgoing secure SMTP host, so I suppose it costs me about 6 a month - less than I'd pay for something like Offfice365 or similar.
      Scubbie likes this.
      --------------------------------------------------------
      Artificial Intelligence is no match for Natural Stupidity.
      --------------------------------------------------------

    6. #5
      lettice's Avatar
      lettice is offline Sky User Member
      Exchange: 0.4 mile away and cabinet 350 yards
      Broadband ISP: Sky Broadband Superfast + Boost
      Router: Sky Broadband Hub SR203
      Sky TV: SkyQ2tbV2+mini
      Join Date
      Jun 2011
      Location
      England
      Posts
      2,038
      Thanks
      12
      Thanked 191 Times in 182 Posts

      Re: 'One billion' affected by Yahoo hack

      Yep I run my own domain and own my own servers, but lucky to have a good friend who has his own domain hosting company, so can let me have unlimited space and control.

      If you are going to use gmail, the one Id recommend for most users, just make sure you go into settings and activate two step authentication.
      Also, create more than one account, like one for forum use, one for sky, one for your itunes, one for general shopping sites and a single one just for your bank. Really not wise to have them all tied to one email account.

      If you have trouble remembering all the passwords, lastpass is free everywhere now and well worth using for security and ease.
      Other password managers available
      Scubbie likes this.

    7. #6
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Other ISP
      Router: Non-Sky Router
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,242
      Thanks
      848
      Thanked 2,240 Times in 2,103 Posts

      Re: 'One billion' affected by Yahoo hack

      I'd agree with you lettice about having multiple email accounts. It helps narrow down the source of spam for a start. It also helps a great deal when I receive certain types of phishing emails as they generally go to the wrong address so I know without even bothering to read them that they aren't genuine.

      Of course if you are handling multiple accounts you ideally need to run an email client. This tends to knock out marjohn56's suggestion for using the two step authentication. I had to disable that for my Yahoo! accounts as my email client couldn't access them. This negates any potential benefit of the process.

      Instead what I do is to periodically check the recent activity on my account. Yahoo! used to provide a list of email addresses which freakishly proved useful one evening hen two of my accounts were accessed in Mexico and Russia. I was quick to change the password on them both within minutes.

      https://help.yahoo.com/kb/SLN2073.html

      PlusNet Fibre since Jan 2021
      Previously Sky Fibre & Sky BB since 2010.

    8. #7
      lettice's Avatar
      lettice is offline Sky User Member
      Exchange: 0.4 mile away and cabinet 350 yards
      Broadband ISP: Sky Broadband Superfast + Boost
      Router: Sky Broadband Hub SR203
      Sky TV: SkyQ2tbV2+mini
      Join Date
      Jun 2011
      Location
      England
      Posts
      2,038
      Thanks
      12
      Thanked 191 Times in 182 Posts

      Re: 'One billion' affected by Yahoo hack

      For two factor authentication, use text messaging rather than email.
      Buy yourself a cheap android phone or use an old iOS phone like an old iPhone 3gs. You may even have an old one in your drawer, not used.
      Use it as the authenticator with text messaging.
      Get one of the ongoing payg sims, they will receive texts and also connect as an authenticator via wifi.
      Do not need topping up for calls as you will not be needing it for that, but just send a text or make 1 call every six months to keep it active.
      Top up with a tenner once every six months too helps.

    9. #8
      marjohn56's Avatar
      marjohn56 is offline Sky User Member
      Exchange: Cricklewood
      Broadband ISP: ZEN
      Router: Billion 8800NL(Modem Bridge) + OPNsense 21.7.a*
      Sky TV: Sky Q 2Tb+Mini
      Join Date
      Dec 2011
      Posts
      1,811
      Thanks
      13
      Thanked 144 Times in 135 Posts

      Re: 'One billion' affected by Yahoo hack

      Quote Originally Posted by lettice View Post
      If you have trouble remembering all the passwords, lastpass is free everywhere now and well worth using for security and ease.
      Other password managers available
      Indeed take a look MSecure, works on mobile/PC whatever and syncs to Dropbox. The sync file is encrypted with a different password to that which is used for opening MSecure, this has on occasions thrown me when I've added a new device. Of course it's all useless if you forget what the password is for MSecure on the device you are using!
      --------------------------------------------------------
      Artificial Intelligence is no match for Natural Stupidity.
      --------------------------------------------------------

    10. #9
      marjohn56's Avatar
      marjohn56 is offline Sky User Member
      Exchange: Cricklewood
      Broadband ISP: ZEN
      Router: Billion 8800NL(Modem Bridge) + OPNsense 21.7.a*
      Sky TV: Sky Q 2Tb+Mini
      Join Date
      Dec 2011
      Posts
      1,811
      Thanks
      13
      Thanked 144 Times in 135 Posts

      Re: 'One billion' affected by Yahoo hack

      Quote Originally Posted by Scubbie View Post
      This tends to knock out marjohn56's suggestion for using the two step authentication. I had to disable that for my Yahoo! accounts as my email client couldn't access them. This negates any potential benefit of the process.
      It was not me, I deny all knowledge of said suggestion.... apart from that, am I the only one doing Christmas round here?

      Suddenly I see lettice has a Santa outfit on, so I am no longer the only one!
      --------------------------------------------------------
      Artificial Intelligence is no match for Natural Stupidity.
      --------------------------------------------------------

    11. #10
      FelixTCat's Avatar
      FelixTCat is offline Sky User Member
      Exchange: Tilehurst
      Broadband ISP: BT Infinity 2
      Router: Non Sky Router
      Sky TV: Other
      Join Date
      Aug 2008
      Location
      Reading
      Posts
      914
      Thanks
      13
      Thanked 23 Times in 22 Posts

      Re: 'One billion' affected by Yahoo hack

      I use 3 different PCs, 2 tablets and 2 android phones to access password-protected sites. Can I install lastpass on all of them and have them synchronise passwords so I can still use any one of them at any time? Are the password vaults stored locally or only on the web?

      Ta.
      Wireless

     

     
    Page 1 of 2 12 LastLast

    Tags for this Thread

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •  
    SkyUser - Copyright © 2006-2020. SatDish and NewsreadeR | SkyUser is in no way affiliated with Sky Broadband / BSkyB
    RIPA NOTICE: NO CONSENT IS GIVEN FOR INTERCEPTION OF PAGE TRANSMISSION