Yahoo email addresses targeted in fraud attack

Yahoo Mail is the latest victim of an online hacking attempt. Here's what to do if your account is compromised.

Yahoo has confirmed usernames and passwords for its Yahoo Mail email service may have been accessed by fraudsters.

The details are likely to have been collected from a third-party database which has been compromised.  

Yahoo said users with an affected account will have been contacted and had their passwords reset.

Security risk

The exact number of affected accounts has not been revealed by Yahoo, but it has said it’s working with law enforcement to find out who is responsible.

In this attack the criminals were seeking to find names and emails addresses from the affected accounts’ most recent sent emails.

The company says malicious computer software is to blame for security leak.

A statement on its Tumblr page from Jay Rossiter, senior vice president at Yahoo, said: “We have no evidence that they were obtained directly from Yahoo’s systems. Our ongoing investigation shows that malicious computer software used the list of usernames and passwords to access Yahoo Mail accounts.”

Cut the cost of your spending with a 0% credit card

Password fraud

Accounts which may have been at risk will now have a new password and users will need to go through an extra security check when logging on.

If your account is at risk, you should have been contacted with a prompt to change your password, either through an email or a text message. Yahoo said it's also introduced additional measures to block these kinds of attacks.

Back in December personal data was stolen from Yahoo and posted online. Data from Facebook, Google and LinkedIn was also taken, posing a huge threat to the security of customer accounts.

Making your account more secure

One of the major problems with online safety is that people use the same password for multiple accounts. If a criminal has access to your password, they may then be able to log onto a range of your other accounts.

To safeguard your account from being hacked, there are several things you can do. Choosing a password which is hard to guess is a good start, but remember not to make it so complicated that you’ll forget it.

Signing out of public computers after using your email, checking your login activity regularly and avoiding opening dodgy links or suspicious emails will also reduce the risk of handing your accounts over to criminals.

Read How to protect your PINs and passwords

Cut the cost of your spending with a 0% credit card

More on scams:

I fell for a doorstep selling scam

Don't get caught out by the bamboo investment scam

Scams targeting Facebook double in a year

Scammers that are wowing Hollywood

Could you spot the scammers on the street?

Comments


Be the first to comment

Do you want to comment on this article? You need to be signed in for this feature

Copyright © lovemoney.com All rights reserved.

 

loveMONEY.com Financial Services Limited is authorised and regulated by the Financial Conduct Authority (FCA) with Firm Reference Number (FRN): 479153.

loveMONEY.com is a company registered in England & Wales (Company Number: 7406028) with its registered address at First Floor Ridgeland House, 15 Carfax, Horsham, West Sussex, RH12 1DY, United Kingdom. loveMONEY.com Limited operates under the trading name of loveMONEY.com Financial Services Limited. We operate as a credit broker for consumer credit and do not lend directly. Our company maintains relationships with various affiliates and lenders, which we may promote within our editorial content in emails and on featured partner pages through affiliate links. Please note, that we may receive commission payments from some of the product and service providers featured on our website. In line with Consumer Duty regulations, we assess our partners to ensure they offer fair value, are transparent, and cater to the needs of all customers, including vulnerable groups. We continuously review our practices to ensure compliance with these standards. While we make every effort to ensure the accuracy and currency of our editorial content, users should independently verify information with their chosen product or service provider. This can be done by reviewing the product landing page information and the terms and conditions associated with the product. If you are uncertain whether a product is suitable, we strongly recommend seeking advice from a regulated independent financial advisor before applying for the products.