Category Archives: CyberSecurity

Yahoo Data Breach – Change your yahoo passwords / Look out for Scam Emails

You may have already seen news coverage about it, but yesterday Yahoo announced that data from at least 500 Million email accounts had been stolen. The data stolen may have included:

  • Names
  • Email Addresses
  • Backup email addresses
  • Telephone Numbers
  • Dates of Birth
  • Hashed passwords.

If you have a Yahoo account, even if you haven’t used it in a long time, login and change your password. If you use the same password for any other accounts, then change those passwords as well.

Also, be on the lookout for scam / phishing emails about the breach, this is a great opportunity for the bad guys to attempt to steal your information, even if you weren’t effected by the breach. Don’t follow links that you receive in emails, and do not open attachments in any suspicious emails.

The data was apparently stolen in 2014, and has recently been seen up for sale on the dark web. Yahoo believes it was a state actor (someone working for a government) responsible for the breach.

Sources:

These 500 Million Hacked Yahoo Accounts Are A Phishing Paradise. Warn Your Users!

500 Million Yahoo accounts Breached

News update–2016-08-08

I have the nastiest habit of finding tidbits, then writing a little blurb about them, and never ever posting them. You see, the idea is to make it a regular feature of the site, I mean, we can’t all read every bit of news, right?

These are still pretty good, although they were from early July.

Federal Government releases their strategies to recruit new CyberSecurity talent (Link to FedScoop)

“The government has hired 3,000 people for cyber security jobs in the first half of the current fiscal year”, and plan on hiring 3,500 more before year end.

There’s even a Scholarship for Service (SFS) program called CyberCorps offering scholarships, and stipends, funded through the National Science Foundation.

After graduation you have to work for a Government Agency, or if approved, a State, Local, Tribal or Territorial Government, or a Federally Funded Research and Development Center, in a position related to cybersecurity. You have to work for them for a period equal to the length of the scholarship, with each academic year equaling one calendar year.

Intel is planning on selling “Intel Security” (formerly McAfee). (Link to Knowbe4.com)

Evidently Brian Krzanich, Intel’s CEO, thinks that antivirus is crap. He’s not the first to say so, with so many new variants of malware popping up, AV companies are having a hell of a time keeping their signatures up to date.

Court Rules that Microsoft can’t be forced to turn over emails stored abroad. (Link to The Guardian)

Will companies move emails all around the world? Does this set the stage for a neutral country to set up some sort of data service?