The massive data breach can be an opportunity to do some cleanup and implement security recommendations.
If you had a Yahoo account in 2013, your name and password were stolen.Yahoo expanded the scope of its massive data breach (go.pcworld. com/ymdb) on Monday. In December, the Internet giant announced a hack that affected over a billion accounts, making it by far the largest data breach in history. Now, the company says that every Yahoo account in existence in 2013—more than 3 billion—was breached. The hackers walked away with password hashes that can be easily cracked.
If you’re a Yahoo user you should consider your password compromised and should take all the necessary steps to secure your account. You should follow all of Yahoo’s recommendations (go.pcworld.com/fayr), such as changing your password and watching for suspicious account activity, but here are a few more advanced tips that you should have in mind.
1. NEVER REUSE PASSWORDS
There are many secure password management solutions (go.pcworld.com/ spms) available today that work across different platforms. There’s really no excuse for not having unique, complex passwords for every single account that you own. If you do want memorable passwords for a few critical accounts use passphrases instead: sentences made up of words, numbers and even punctuation marks.
According to Yahoo, this breach happened in August 2013, at a time when the company hadn’t yet switched to the more secure bcrypt password hashing algorithm. As a result, most passwords that were stolen are in the form of MD5 hashes, which are highly vulnerable to cracking.
If you made the mistake of using your Yahoo password elsewhere and haven’t changed it yet, you should do so immediately and review the security settings of those accounts too. It’s very likely that hackers have already cracked your password and had three years to abuse it.
2. TWO-FACTOR AUTHENTICATION EVERYWHERE
Diese Geschichte stammt aus der November 2017-Ausgabe von PCWorld.
Starten Sie Ihre 7-tägige kostenlose Testversion von Magzter GOLD, um auf Tausende kuratierte Premium-Storys sowie über 8.000 Zeitschriften und Zeitungen zuzugreifen.
Bereits Abonnent ? Anmelden
Diese Geschichte stammt aus der November 2017-Ausgabe von PCWorld.
Starten Sie Ihre 7-tägige kostenlose Testversion von Magzter GOLD, um auf Tausende kuratierte Premium-Storys sowie über 8.000 Zeitschriften und Zeitungen zuzugreifen.
Bereits Abonnent? Anmelden
Facebook wants to use your posts to train Al. Here's how to object
Facebook is changing its privacy policy and plans to use posts and images to train its Al. To prevent this, you need to object.
Windows 11's new AI feature could be a privacy nightmare
Your PC will be watching your every move by default.
The future of Windows: Copilot+ PCs unleash practical AI tools
Microsoft is aligning AI with its Copilot brand.
If you get a phone call from LastPass, it's a scam
A new breed of sophisticated phishing scammers are targetting LastPass users with phone calls and emails.
Sick of ads in Windows? This ingenious program eradicates them all
This clever free tool removes all the ads that Microsoft keeps stuffing into Windows 10 and 11.
Controversial Windows 11 Start menu ads begin rolling out
Microsoft has pushed “Promoted” apps from the Store to the Windows 11 wide build just a few weeks after they started appearing to Insiders.
Ring of bogus web shops steals 850K credit card numbers
Fake online storefronts, which show up in great numbers in Google and other search engines, are becoming a big problem.
This free, ancient Windows app will watch your laptop battery
BatteryInfoView gives you the laptop battery information you didn’t know you wanted.
How to use your smartphone as a Windows 11 PC webcam
Windows 11 now allows the wireless connection of Android smartphones for use as a webcam.
How to digitize VHS tapes the cheap way
Preserve your old video tapes with an inexpensive capture card and free software.