9 replies to this topic

[Corrine]

Yahoo Voices hacked, nearly half a million emails and passwords stolen | Naked Security

Quote

Yesterday, we reported on the Formspring website hack. Today, it's Yahoo Voices that has been compromised.

Yahoo Voices, which defines itself as "where your expertise and perspectives take center stage!", allows Yahoo users to post their own articles, videos and slideshows online.

This morning, hacker group D33DS Company, published the 453,491 email addresses and passwords online in plain text, in a document marked "Owned and Exposed".

Another story:  Hackers expose 453,000 credentials allegedly taken from Yahoo service (Updated) | Ars Technica

[V.T. Eric Layton]

What is Yahoo Voices?

[crp]

V.T. Eric Layton, on 12 July 2012 - 04:17 PM, said:

What is Yahoo Voices?

Which probably explains why 99.5% of the stolen items are worhless

[V.T. Eric Layton]

[zlim]

Quote

Yahoo representatives confirmed a breach that hit the site's Contributor Network (previously Associated Content) on Wednesday. The stolen data was contained in an "older file," and only about 5 percent of the exposed credentials were still valid on Yahoo.

You know them, the people who never change passwords, use easily guessable ones and might even use the same pass on all sites!

I can't find the article but something like 166,000 of the leaked passwords were the same one: 123456
YIKES! When I stumble across the source again I will post it.
Boy I was way off on my count!

Quote

The most common password in the list is "123456," a simple jaunt across the keyboard that was used for 1,673 of the accounts. Another popular option was "##########," which 1,279 users chose.

Source: http://www.computerw..._angry_and_easy
I should have remembered it was  ComputerWorld.  

Go here http://labs.sucuri.net/?yahooleak
type in your email address from yahoo and you can check if yours was leaked.

Edited by zlim, 12 July 2012 - 11:01 PM.

[LilBambi]

They have millions of users; mine wasn't part of the leak btw.

[zlim]

The one thing I absolutely hate about Yahoo and google is that you can not have separate passwords for the different things.

I have pictures stored on Flickr and I have to use my email password from Yahoo on my Flickr account.

People who use google docs, have to use the email password on google docs.

Personally, I think that needs to be changed.

[ross549]

We Highlanders are an interesting bunch. I'd bet Average Joe is going to prefer having a unified password whenever possible.

Adam

[LilBambi]

Sadly true Adam, but when I read this, I thought the same thing as Liz. It's not good to have the same password and username across all properties for things like Google, Yahoo, Microsoft, etc.

[LilBambi]

Although mine was not leaked, I did change it to an even more generated password of much greater length too.

Before it's all said and one, it seems all my passwords will be changed yet again!