Yahoo!

Yahoo has recently been in the news again lately due to yet another problem with data breaches. Having a Yahoo account, this Victor crew member has received an email from Yahoo about it.
Yahoo Email
In this message, they tell me that they are investigating the creation of forged cookies. They say they are taking steps to secure accounts. They say this forged cookie may have been created in 2015 or 2016 and they believe it to be connected to the September 22, 2016 data theft. They also give some actions you can take.

They suggest using a Yahoo Account Key which is something we will investigate ourselves at a later time. This user is on the verge of dismissing this account altogether although it was my first email created back in the 90s. I have added 2-step verification as well as changed the password.

Yahoo Email
Another email as a reminder from Yahoo states a reminder to secure to secure the account. They suggest updating to the Yahoo Mail app on android or iOS. They suggest to turn off insecure apps.

Yahoo Email
As I logged into the account after the above emails, there was a link to update security settings to block apps with less secure login. I am not sure what this entails yet, but will let you know when I find out.

Another Data Breach

By now you have heard there was another data breach reported … from Yahoo. This is the biggest breach to date. A while ago they reported a breach of 500 million accounts after which they had contacted people asking them to change their passwords. It turns out there were more than a billion accounts hacked. This included names, usernames, passwords, phone numbers, emails, security questions/answers, backup emails.

If you haven’t already after the breach reported in September, you need to change your password. NOW. If you are using this email account for any other account, you need to change the other accounts as well. People tend to use the same username/email/password combinations. The Victor crew also advises you to turn on 2-step verification. That way if anyone does get into your account, you can be notified.

Bottom line, if your identity and information means anything to you, make sure to keep your information secure as you possibly can. Use a password manager. Use a different password for every site.

Here is what the latest email from Yahoo looked like:

NOTICE OF DATA BREACH

Dear [Name of User],
We are writing to inform you about a data security issue that may involve your Yahoo account information. We have taken steps to secure your account and are working closely with law enforcement.

What Happened?
Law enforcement provided Yahoo in November 2016 with data files that a third party claimed was Yahoo user data. We analyzed this data with the assistance of outside forensic experts and found that it appears to be Yahoo user data. Based on further analysis of this data by the forensic experts, we believe an unauthorized third party, in August 2013, stole data associated with a broader set of user accounts, including yours. We have not been able to identify the intrusion associated with this theft. We believe this incident is likely distinct from the incident we disclosed on September 22, 2016.

What Information Was Involved?
The stolen user account information may have included names, email addresses, telephone numbers, dates of birth, hashed passwords (using MD5) and, in some cases, encrypted or unencrypted security questions and answers. Not all of these data elements may have been present for your account. The investigation indicates that the stolen information did not include passwords in clear text, payment card data, or bank account information. Payment card data and bank account information are not stored in the system we believe was affected.

What We Are Doing
We are taking action to protect our users:
• We are requiring potentially affected users to change their passwords.
• We invalidated unencrypted security questions and answers so that they cannot be used to access an account.
• We continuously enhance our safeguards and systems that detect and prevent unauthorized access to user accounts.

What You Can Do
We encourage you to follow these security recommendations:
• Change your passwords and security questions and answers for any other accounts on which you used the same or similar information used for your Yahoo account.
• Review all of your accounts for suspicious activity.
• Be cautious of any unsolicited communications that ask for your personal information or refer you to a web page asking for personal information.
• Avoid clicking on links or downloading attachments from suspicious emails.
Additionally, please consider using Yahoo Account Key, a simple authentication tool that eliminates the need to use a password on Yahoo altogether.

For More Information
For more information about this issue and our security resources, please visit the Yahoo Security Issues FAQs page available at https://yahoo.com/security-update.

Protecting your information is important to us and we work continuously to strengthen our defenses.

Sincerely,

Bob Lord
Chief Information Security Officer
Yahoo

Tech news this week

Yahoo!
You may have already heard of Yahoo! Screen. Now they want to go a step further and compete somewhat with YouTube, even poaching their some of their stars according to an article by re/code. They aren’t looking to allow users to upload all their content but want to pick the most popular ones and offer better deals.

Google
If you are a developer, you would have received an email by now telling of the revamped Google Play Developer Program Policy. Google is attempting to cut down on deceptive advertising practices from app developers and other third-party services. You can view the policy and hopefully report any apps that may be violating the new rules.

Printer Ink
Want to save money on ink? Use Garamond font. A 14-year-old boy from Pittsburgh, Suvir Mirchandani, did a study on his own to see how he could save his school district some money. He found he could save as much as $21,000/year just by switching to the thinner Garamond font. You can read about his research here.

Facebook
Mark Zuckerberg, CEO of Facebook plans to use drones and lasers to improve Internet access. They plan to fly drones over areas that don’t have access. They are also looking into beaming Internet to people from the sky. Read more here.

~ Jody Victor

Interesting news from Facebook and Yahoo

Yahoo:
When you tried to choose your username for a Yahoo account, did you have difficulty finding the one you wanted because it was taken? Well now you can make a watch list of names you would like (your 5 top choices) and if those accounts have been inactive for a year, you may get your wish. According to their blog, you will have had to fill out the wishlist last month to obtain it for free. Otherwise, it will cost a mere $1.99.

Facebook:
Facebook now has shared photo albums. Suppose your family had a reunion. Everyone who took pictures could upload them all to the same album! Think of the possibilities: weddings, other milestone events. The album creator can share access with up to 50 contributors, who can each share up to 200 photos. There are 3 privacy settings: public, friends of contributors and contributors only.

~ Jody Victor

Hey Jody, What were the top tech stories for 2012?

Jody Victor® found out what CNN Tech picked for the top tech stories of 2012:

  1. Microsoft Windows 8 – a complete overhaul of how Windows works.
  2. SOPA backlash – (Stop Online Privacy Act) bills that would have restricted access to sites with pirated content and anyone associated with them including search engines, ads etc.
  3. Live-tweeting war – Israeli military tweeted updates in a conflict with Palestinian forces in Gaza.
  4. iPhone 5 and the Apple Maps debaucle – Apple developed their own map app while dropping the Google Maps app.
  5. Apple vs. Samsung – Apple accused Samsung of infringing on their patents which ended in a trial. The jury decided in Apple’s favor.
  6. Facebook’s IPO – The most anticipated IPO fell flat when it’s initial price was $38 (too high). The stock hit a low of $17.55 September 4.
  7. Instagram – Started out as an app, but when usage skyrocketed, Facebook bought it for $1 billion in cash and shares (later dropping to $735 million as Facebook shares dropped.
  8. Megaupload and Kim Dotcom – Kim Dotcom founder of Megaupload, a file-sharing company, had his various sites shut down by the F.B.I. for piracy.
  9. Mid-sized tables become popular – Apple’s iPad Mini, and similar-sized devices from Google and Amazon.
  10. Nintendo offers Wii U – Wii U has a touchscreen tablet controller called a GamePad that communicates with the main console.
  11. Yahoo hires Marissa Mayer – The day she was hired, she announced her pregnancy. Stock has risen $4 a share since her hiring was announced.
  12. Tech and the presidential election – President Obama used Google Plus and Reddit to respond with voters.

Thanks for finding this, Jody.