Yahoo hack: What to do if your password has been stolen
The company has suffered the biggest data breach in history
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.A staggering three billion Yahoo accounts have been compromised and, if you’ve been affected, you need to take action as soon as possible.
The hack, which took place in 2013 and is the biggest of all time, exposed the name, email address, password, date of birth and phone number of every single Yahoo account holder at the time.
Fortunately, it’s easy to find out if your personal details have been stolen.
The website Have I Been Pwned? has a search tool that lets you quickly and easily check if you have an online account that has been breached.
Simply type your email address into the search bar and hit the Pwned? button to find out. The site also offers a Notify Me alert, which automatically contacts you when it finds out your account has been compromised.
If any of your accounts have been breached, you need to update your passwords immediately.
The hackers will try to use your stolen login details to break into not just your Yahoo account, but any others you have that use your Yahoo address.
It’s therefore crucial to ensure you use different passwords for different websites and services. Doing so will make it much harder for cyber criminals to breach your security.
If you struggle to remember multiple passwords, you can use a password manager, such as LastPass. However, it’s important to note that LastPass itself suffered a security issue earlier this year.
What's imperative, however, is that you avoid using passwords that are easy to guess, such as Password1 or qwerty123.
You can strengthen your password by combining words, numbers and punctuation, or by abbreviating a phrase you find easy to remember, and capitalising some letters.
It’s also worth deleting any old email addresses and accounts you no longer use, since keeping them open increases the likelihood of being attacked.
Join our commenting forum
Join thought-provoking conversations, follow other Independent readers and see their replies
Comments