At least 500 Million Yahoo! accounts have been breached in the largest user identity breach ever. The data breach happened almost two years ago but is just now being brought to investigation. It is suspected that the hack of the 500 million accounts was a state-sponsored act.
Claims had surfaced back in August when a hacker using the name “Peace” was found trying to sell the usernames and info on the web black market.
The FBI is currently investigating the matter and taking it very seriously.
Yahoo is notifying potential users that may have become a victim to the hacker. If you have not changed your password since 2014 it is strongly suggested that you do it now. The notification email from yahoo indicates that users should:
- Change security questions and passwords for their accounts.
- Review accounts for any suspicious looking activity.
- Be cautious for any email that is unsolicited and asking for personal information.
- Do not click on links or download attachments from suspicious looking emails.
- It is suggested to use Yahoo’s Account Key which is an authentication tool that limits the requirement of password usage.
Even if your account has not been affected it is recommended to start using the Yahoo Account Key for higher security.
The security breach can bring out additional hackers and scammers trying to take your information by sending emails to help you reset your Yahoo account password. Stay on the lookout and do not click on the links.
For up to date information on the security breach you can check it out on yahoo at https://yahoo.com/security-update.
The announcement comes as Verizon is in the process of purchasing Yahoo for 4.8 billion dollars. Verizon still intends to move forward with the purchase. The price may decrease some based on findings if yahoo users have left. Potential adjustments of the purchase can decrease $100 to $200 million.