If your Yahoo account was hacked earlier today, there’s a chance that your Gmail, Hotmail, Verizon, and other accounts are vulnerable as well.
The New York Times is reporting that among the over 400,000 Yahoo usernames and passwords that were exposed this morning were a number of login credentials for Gmail, Hotmail, Comcast, MSN, Verizon, AOL, SBC Global and Live.com accounts. Security Firm Rapid7 found that the dump contained over 106,000 Gmail account credentials, specifically.
Users woke up today to find that Yahoo had been breached and around 435,000 logins and passwords were exposed. New hacking collective D33Ds Company claimed responsibility for the hack today, saying it simply wants the security team to notice how insecure their systems are. The New York Times grabbed the comment before it was erased from D33Ds’ post, which also included the logins and passwords:
“We hope that the parties responsible for managing the security of this subdomain will take this as a wake-up call, and not as a threat. There have been many security holes exploited in Web servers belonging to Yahoo Inc. that have caused far greater damage than our disclosure. Please do not take them lightly. The subdomain and vulnerable parameters have not been posted to avoid further damage.”
Yahoo is saying the breach comes from its Yahoo Contributor Network, which allows users to sign up using a Yahoo, Google, or Facebook login.
It’s also possible that a number of these accounts were exposed because of people using the same password across multiple accounts. It might be easier to remember your passwords this way, but consider this: Are your Yahoo and online banking passwords the same? Yes, good, stop reading this story and go change your passwords.
If you don’t know if your account was one of those exposed, check out this post on how to find out.
VB's research team is studying web-personalization... Chime in here, and we’ll share the results.