500 million Yahoo users - data breach
Sep 22, 2016 - "Yahoo has confirmed* that a data breach from 2014 hit 500 million users, allowing hackers access to sensitive information, including poorly encrypted passwords... Yahoo points out that no payment info was stolen. While some of the passwords stolen may be encrypted, data dumps like this tend to be decrypted reasonably quickly..."
Sep 22, 2016 - "... Yahoo is notifying potentially affected users and has taken steps to secure their accounts. These steps include invalidating unencrypted security questions and answers so that they cannot be used to access an account and asking potentially affected users to change their passwords. Yahoo is also recommending that users who haven’t changed their passwords since 2014 do so. Yahoo encourages users to review their online accounts for suspicious activity and to change their password and security questions and answers for any other accounts on which they use the same or similar information used for their Yahoo account. The company further recommends that users avoid clicking on links or downloading attachments from suspicious emails and that they be cautious of unsolicited communications that ask for personal information. Additionally, Yahoo asks users to consider using Yahoo Account Key, a simple authentication tool that eliminates the need to use a password altogether..."
Sep 22, 2016