Yahoo has asked the users to change their Yahoo Mail passwords, after hackers manged gain unauthorized access to Yahoo Mail accounts. The company has reset passwords on impacted accounts and is closely working with federal law enforcement to find the perpetrators responsible for this attack.
Regarding the security breach, Jay Rossiter, SVP, Platforms and Personalization Products, said,
The list of usernames and passwords that were used to execute the attack was likely collected from a third-party database compromise. We have no evidence that they were obtained directly from Yahoo’s systems. Our ongoing investigation shows that malicious computer software used the list of usernames and passwords to access Yahoo Mail accounts.
Impacted users will be prompted to change their password and may receive an email notification or an SMS. If you have not changed your yahoo mail password already, change it, even if you have not received any email. Yahoo encourages users to use Two-factor authentication that was available since 2011.
Yahoo did not say how many accounts had been compromised, nor when the attacks had taken place. Last year Adobe had a huge security breach, which exposed account details of millions of customers.