Yahoo Email Security Breach

LongBlade · July 12, 2012, 11:51:53 AM

QuoteYahoo Inc. said Thursday it is investigating reports of a security breach that may have exposed nearly half a million users' email addresses and passwords.

Read more: http://www.foxnews.com/tech/2012/07/12/yahoo-investigating-reported-mass-password-breach

Ruh roh.

You know, Yahoo is my major email these days. And I'm terribly concerned that someone has stolen my exclusive offers to access hot women over the internet while I have FedEx deliver pallets of Viagra to my doorstep from totally legit Canadian pharmacies. It really pisses me off that someone might get the same deal as me and be pushing up on my cybersex exclusive chicks.

mirth · July 12, 2012, 12:58:20 PM

QuoteThe little-known group was quoted as saying that they had stolen the passwords using an SQL injection - the name given to a commonly-used attack in which hackers use rogue commands to extract data from vulnerable websites.

SQL injection, awesome. Hey Yahoo the year 2000 called, they'd like their database security back.

LongBlade · July 12, 2012, 12:59:54 PM

Quote from: mirth on July 12, 2012, 12:58:20 PM
QuoteThe little-known group was quoted as saying that they had stolen the passwords using an SQL injection - the name given to a commonly-used attack in which hackers use rogue commands to extract data from vulnerable websites.

SQL injection, awesome. Hey Yahoo the year 2000 called, they'd like their database security back.

And for the less techno-savvy, a SQL injection attack is not when Star gets a chick drunk and takes her back to his place.

mirth · July 12, 2012, 01:07:03 PM

The best part about many of the major database breaches that happened in the past few years is that they involved fairly simple SQL injection attacks. Often in databases that stored unencrypted user data.

mirth · July 12, 2012, 01:07:27 PM

Nice new avatar, LB.

LongBlade · July 12, 2012, 01:12:55 PM

Quote from: mirth on July 12, 2012, 01:07:27 PM
Nice new avatar, LB.

Thanks.

I figured the text to a take on "My other car is a..." would be too long.

Besides, this kinda wraps up all my hobbies in one nifty pic wargaming, zombies, chicks.

Barthheart · July 12, 2012, 01:14:05 PM

Where's the chicks?

LongBlade · July 12, 2012, 01:15:20 PM

Quote from: Barthheart on July 12, 2012, 01:14:05 PM
Where's the chicks?

Inside the Jagdpanther with me

mirth · July 12, 2012, 01:17:16 PM

Here's another article on the Yahoo breach-

http://arstechnica.com/security/2012/07/yahoo-service-hacked/

This sorta says it all:

QuoteHackers posted what appear to be login credentials for more than 453,000 user accounts that they said they retrieved in plaintext from an unidentified service on Yahoo.

Login credentials stored in plain text. Happens all too often.

mirth · July 12, 2012, 01:18:11 PM

Quote from: LongBlade on July 12, 2012, 01:15:20 PM
Quote from: Barthheart on July 12, 2012, 01:14:05 PM
Where's the chicks?

Inside the Jagdpanther with me

Chicks dig the Jagdpanther. Especially the Saukopf mantlet.

bayonetbrant · July 12, 2012, 01:23:43 PM

you can check to see if your info was part of the breach

http://labs.sucuri.net/?yahooleak

LongBlade · July 12, 2012, 01:24:53 PM

Quote from: mirth on July 12, 2012, 01:17:16 PM
Here's another article on the Yahoo breach-

http://arstechnica.com/security/2012/07/yahoo-service-hacked/

This sorta says it all:

QuoteHackers posted what appear to be login credentials for more than 453,000 user accounts that they said they retrieved in plaintext from an unidentified service on Yahoo.

Login credentials stored in plain text. Happens all too often.

Apparently there's some good news. From your link:

QuoteThe stolen data was contained in an "older file," and only about 5 percent of the exposed credentials were still valid on Yahoo.

Fortunately I updated my password a few weeks ago. Probably time to rotate it just to be sure, but truth be told, if someone really wants to have a share of my pallet of viagra, I'm only using about 80% of it a month anyway.

LongBlade · July 12, 2012, 01:25:35 PM

Quote from: bayonetbrant on July 12, 2012, 01:23:43 PM
you can check to see if your info was part of the breach

http://labs.sucuri.net/?yahooleak

Grooby. Thanks.

xxxx@yahoo.com not found in leak.

mirth · July 12, 2012, 01:28:59 PM

Quote from: LongBlade on July 12, 2012, 01:24:53 PM
Quote from: mirth on July 12, 2012, 01:17:16 PM
Here's another article on the Yahoo breach-

http://arstechnica.com/security/2012/07/yahoo-service-hacked/

This sorta says it all:

QuoteHackers posted what appear to be login credentials for more than 453,000 user accounts that they said they retrieved in plaintext from an unidentified service on Yahoo.

Login credentials stored in plain text. Happens all too often.

Apparently there's some good news. From your link:

QuoteThe stolen data was contained in an "older file," and only about 5 percent of the exposed credentials were still valid on Yahoo.

Fortunately I updated my password a few weeks ago. Probably time to rotate it just to be sure, but truth be told, if someone really wants to have a share of my pallet of viagra, I'm only using about 80% of it a month anyway.

Yeah you're talking about what, 23,000 valid accounts? That's pretty small by Yahoo! standards. This was definitely just meant as a wake up call.

LongBlade · July 12, 2012, 01:34:03 PM

Quote from: mirth on July 12, 2012, 01:18:11 PM
Quote from: LongBlade on July 12, 2012, 01:15:20 PM
Quote from: Barthheart on July 12, 2012, 01:14:05 PM
Where's the chicks?

Inside the Jagdpanther with me

Chicks dig the Jagdpanther. Especially the Saukopf mantlet.

If the tank's a-rockin' don't come a-knockin'!

I believe I have a new sig. (and, yes, I do know it's really a TD)