If you use any of the above services, change your password RIGHT NOW!
Multiple sources are confirming a massive data breach of over 272 Million passwords have been compromised. AND, better yet, according to sources at Reuters, and Hold Security the password lists are readily available for sale right now on the darkweb for less than a $1
To be clear, this could mean one of many things happened...
1 - People may have used the same password on multiple sites and a DIFFERENT site was compromised, leading the hackers to be able to sign into the email providers listed above.
2 - Hackers may have gained access to the passwords via malware or phishing attempts.
At any rate, go change your password RIGHT NOW! Or, better still look into a EXCELLENT tool called LastPass. LastPass allows you to securely store all your passwords in one place. It works on desktop AND mobile devices. It also fills in your username and password for you automatically. AND last but certainly not least, in the event of a compromised breach like today's event you can have LastPass lock down your digital life within a few simple clicks!!
Alex Holden, chief information security officer of Hold Security, has told Reuters that 272.3 million usernames and passwords have been stolen from users of Hotmail, Yahoo Mail, Google's Gmail and Mail.ru, Russia's largest email service.
The majority of data comes from Mail.ru. Fifteen percent of data is known to come from Yahoo Mail, 12 percent from Hotmail, and 9 percent from Gmail. Usernames and passwords for banking and retail are also among the stolen information.
Holden advised all users of the email services to change their passwords. All of the affected email services also offer a two-step verification process, which will ask for extra information if there is an attempt to log in from a new device. The discovery came after researchers from Hold Security found a young Russian hacker – referred to as "The Collector" – who was caught bragging about the "heist" in an online forum. Experts from Hold Security began talking to the hacker, expecting that he would ask for a high price for the extremely valuable and sensitive data. Bizarrely, the hacker asked for just 50 roubles (around 75 cents) for all of the data.
Instead of big money, all he asked was that people post positive comments to his social media page. Since the hacker released the information so readily, Hold Security fear the data could already be circulating around the online criminal underground. Google told Tech Rader they are already looking into the issue and Mail.ru told Reuters that they are in the process of discovering the affected accounts. Microsoft, who own Hotmail, said they already have "security measures in place to detect account compromise." Yahoo has not yet responded.
At Reality Bytes we are constantly working on ways to make your technology more efficient and easier to use. Feel free to contact us for more information.