Yahoo Hack

Jump to Last Post 1-6 of 6 discussions (13 posts)

72
melbelposted 12 years ago
I was notified by Twitter, Amazon, IMDB, and probably gobs of other sites down the road that I needed to change my password due to my email address appearing on the Yahoo hack text list.

Although frustrated, I'm thankful that those sites warned me.

I don't re-use passwords (or use things like 123456 as my password as the text list shows to be extremely common), so fortunately, I was just locked out of my accounts based on the fact that my email appeared on the list. I could only hope that others could be so lucky.

I thought it would be nice if HP sent a warning to users because a bulk of the username/password credentials stolen were from Associated Content, a writing site that many hubbers use.

There is a searchable cleartext list via Dazzlepod that HubPages could utilize in order to notify hubbers whose credentials appear on said list. Or maybe a PSA like, "Check your email address against this list. And don't reuse passwords."

Just a thought.
reply report
1. 78
  galleryofgraceposted 12 years agoin reply to this
  You guys be careful- the email I received from Twitter was a scam. Or rather they claimed to be twitter. Never click on the links in the email. If you do, the site you arrive at is probably the scammers site. Many of them look very real. And if you go and change your password using their link you just gave them access to your account.
  I knew this because the email address they sent the phishing email to is not the one I use for twitter.
  reply report
70
Pearldiverposted 12 years ago
+3

It's far more than...

'Just a Thought'
reply report
72
Kangaroo_Jaseposted 12 years ago
Because of this debacle, Ive had to change my passwords for 7 sites who got spooked about this.

What...A...Pain...In...The...Arse.

When I was in the corporate world, I had to change my password to my company account every month. I have never seen this for any site I use on the internet. Ever.

Now THERE is an interesting thought.
reply report
72
lorlie6posted 12 years ago
I went to dazzlepod yesterday and apparently my accounts are okay. But this situation is absolutely frightening-lesson learned.
reply report
1. 78
  galleryofgraceposted 12 years agoin reply to this
  Care to explain to the rest of us - exactly how you did that since dazlepod is simply a business website for which you all have caused many people to visit?
  reply report
  0
  Chris Hughposted 12 years agoin reply to this
  Google "dazzlepod yahoo" and you'll see that dazzlepod lets you check and see if your mail address was one of the ones hacked. Does that clear this up for you? Thanks for the friendly, open tone of your question. It's great to see questions asked and answered without insinuations.
  reply report
  72
  melbelposted 12 years agoin reply to this
  Dazzlepod is just one of many sites that allows you to search by your email address to see if you were one of the several thousand users whose credentials were stolen by a group of hackers.
  
  While I'm not big on "hey, visit this company's site", they offer a helpful service in a time when a lot of people are finding themselves locked out of their online accounts. And, in fact, I didn't openly suggest that all hubbers check their email against dazzlepods list, but rather that HubPages use their database to create a list of hubbers they should warn. And who cares if it's dazzlepod that offers a free, searchable database for users to check? I didn't see an email from Yahoo saying, "Hey, Melanie, your sh*t's been stolen." If they profit in any way from it (do they show ads? idk), I don't have a problem with it, because really it's a service that really Yahoo! should be taking care of since it was their database that was hacked in the first place.
  
  PBS offers a similar service, but I found their database slow-to-load which probably wouldn't be a good option if you're going to be programatically searching a database (which is what I've proposed to HP staff.)
  
  And yes, don't click links in emails. That said, I truly was locked out of my Twitter, IMDB, and Amazon accounts since they did what I'm proposing what HP do: Notify hubbers if their email address appears on the list.
  
  Why? Because tons of people use the same password and handle across a number of accounts.
  
  If you used myemail@gmail.com with the password thisismypassword123 on Associated Content, it's likely that your password to login to HubPages is thisismypassword123. Maybe it's the same login info you use on Twitter, Amazon, and even your email account. If you reuse passwords AND appear on the stolen credential list, congratulations, a large group of hackers and, well now tons of people know your login information (potentially across several sites) since handles and passwords were publicly released on a text list via Twitter. Thus anyone can try your email and password set across several hundred sites to see if they can "get in".
  
  Bank accounts, HubPages, AdSense (heck, your entire Google account), eBay, whatever.
  
  And yeah, it only really pertains to people who reuse passwords, but enough people do this that it warrants a PSA.
  reply report
60
Dave Mathewsposted 12 years ago
I don't understand how there is a need to change your password here on Hub since we are a group of writers?
reply report
1. 72
  Kangaroo_Jaseposted 12 years agoin reply to this
  No changes at this stage for HubPages Dave.
  reply report
2. 72
  melbelposted 12 years agoin reply to this
  If you use the same password here as you use on other sites, there would be a need to change your password.
  reply report
82
viryaboposted 12 years ago
I just checked dazzlepod and got this message:
"You have been banned temporarily for making too many requests"

Now this is baffling because i only tried to check a couple of minutes ago. 1 time!
I remember when i tried to sign in a fw days ago, my "Security seal" (or something like that) was missing, so i just didn't sign in.

Should i just change my P/W?
reply report
1. 72
  melbelposted 12 years agoin reply to this
  Hmm, that's really strange! I don't see a login form on the dazzlepod cleartext list anywhere. There's just a search box. Are you sure you're on the correct site? I don't see a login form anywhere on their site.
  
  dazzlepod.com/yahoo is the url for the searchable database, no login there, either. :S
  
  On a side note, if your time and date are incorrect on your computer, that would cause security certificate issues. Just noting this since it's the most common cause for cert problems, for me at least.
  reply report

This website uses cookies

As a user in the EEA, your approval is needed on a few things. To provide a better website experience, hubpages.com uses cookies (and other similar technologies) and may collect, process, and share personal data. Please choose which areas of our service you consent to our doing so.

Necessary

Features

Marketing

Statistics

For more information on managing or withdrawing consents and how we handle data, visit our Privacy Policy at: https://corp.maven.io/privacy-policy

Show Details

Necessary
HubPages Device ID	This is used to identify particular browsers or devices when the access the service, and is used for security reasons.
Login	This is necessary to sign in to the HubPages Service.
Google Recaptcha	This is used to prevent bots and spam. (Privacy Policy)
Akismet	This is used to detect comment spam. (Privacy Policy)
HubPages Google Analytics	This is used to provide data on traffic to our website, all personally identifyable data is anonymized. (Privacy Policy)
HubPages Traffic Pixel	This is used to collect data on traffic to articles and other pages on our site. Unless you are signed in to a HubPages account, all personally identifiable information is anonymized.
Amazon Web Services	This is a cloud services platform that we used to host our service. (Privacy Policy)
Cloudflare	This is a cloud CDN service that we use to efficiently deliver files required for our service to operate such as javascript, cascading style sheets, images, and videos. (Privacy Policy)
Google Hosted Libraries	Javascript software libraries such as jQuery are loaded at endpoints on the googleapis.com or gstatic.com domains, for performance and efficiency reasons. (Privacy Policy)

Necessary

HubPages Device ID

This is used to identify particular browsers or devices when the access the service, and is used for security reasons.

This is necessary to sign in to the HubPages Service.

Google Recaptcha

This is used to prevent bots and spam. (Privacy Policy)

Akismet

This is used to detect comment spam. (Privacy Policy)

HubPages Google Analytics

This is used to provide data on traffic to our website, all personally identifyable data is anonymized. (Privacy Policy)

HubPages Traffic Pixel

This is used to collect data on traffic to articles and other pages on our site. Unless you are signed in to a HubPages account, all personally identifiable information is anonymized.

Amazon Web Services

This is a cloud services platform that we used to host our service. (Privacy Policy)

Cloudflare

This is a cloud CDN service that we use to efficiently deliver files required for our service to operate such as javascript, cascading style sheets, images, and videos. (Privacy Policy)

Google Hosted Libraries

Javascript software libraries such as jQuery are loaded at endpoints on the googleapis.com or gstatic.com domains, for performance and efficiency reasons. (Privacy Policy)

Features
Google Custom Search	This is feature allows you to search the site. (Privacy Policy)
Google Maps	Some articles have Google Maps embedded in them. (Privacy Policy)
Google Charts	This is used to display charts and graphs on articles and the author center. (Privacy Policy)
Google AdSense Host API	This service allows you to sign up for or associate a Google AdSense account with HubPages, so that you can earn money from ads on your articles. No data is shared unless you engage with this feature. (Privacy Policy)
Google YouTube	Some articles have YouTube videos embedded in them. (Privacy Policy)
Vimeo	Some articles have Vimeo videos embedded in them. (Privacy Policy)
Paypal	This is used for a registered author who enrolls in the HubPages Earnings program and requests to be paid via PayPal. No data is shared with Paypal unless you engage with this feature. (Privacy Policy)
Facebook Login	You can use this to streamline signing up for, or signing in to your Hubpages account. No data is shared with Facebook unless you engage with this feature. (Privacy Policy)
Maven	This supports the Maven widget and search functionality. (Privacy Policy)

Features

Google Custom Search

This is feature allows you to search the site. (Privacy Policy)

Google Maps

Some articles have Google Maps embedded in them. (Privacy Policy)

Google Charts

This is used to display charts and graphs on articles and the author center. (Privacy Policy)

Google AdSense Host API

This service allows you to sign up for or associate a Google AdSense account with HubPages, so that you can earn money from ads on your articles. No data is shared unless you engage with this feature. (Privacy Policy)

Google YouTube

Some articles have YouTube videos embedded in them. (Privacy Policy)

Vimeo

Some articles have Vimeo videos embedded in them. (Privacy Policy)

Paypal

This is used for a registered author who enrolls in the HubPages Earnings program and requests to be paid via PayPal. No data is shared with Paypal unless you engage with this feature. (Privacy Policy)

Facebook Login

You can use this to streamline signing up for, or signing in to your Hubpages account. No data is shared with Facebook unless you engage with this feature. (Privacy Policy)

Maven

This supports the Maven widget and search functionality. (Privacy Policy)

Marketing
Google AdSense	This is an ad network. (Privacy Policy)
Google DoubleClick	Google provides ad serving technology and runs an ad network. (Privacy Policy)
Index Exchange	This is an ad network. (Privacy Policy)
Sovrn	This is an ad network. (Privacy Policy)
Facebook Ads	This is an ad network. (Privacy Policy)
Amazon Unified Ad Marketplace	This is an ad network. (Privacy Policy)
AppNexus	This is an ad network. (Privacy Policy)
Openx	This is an ad network. (Privacy Policy)
Rubicon Project	This is an ad network. (Privacy Policy)
TripleLift	This is an ad network. (Privacy Policy)
Say Media	We partner with Say Media to deliver ad campaigns on our sites. (Privacy Policy)
Remarketing Pixels	We may use remarketing pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to advertise the HubPages Service to people that have visited our sites.
Conversion Tracking Pixels	We may use conversion tracking pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to identify when an advertisement has successfully resulted in the desired action, such as signing up for the HubPages Service or publishing an article on the HubPages Service.

Marketing

Google AdSense

This is an ad network. (Privacy Policy)

Google DoubleClick

Google provides ad serving technology and runs an ad network. (Privacy Policy)

Index Exchange

This is an ad network. (Privacy Policy)

Sovrn

This is an ad network. (Privacy Policy)

Facebook Ads

This is an ad network. (Privacy Policy)

Amazon Unified Ad Marketplace

This is an ad network. (Privacy Policy)

AppNexus

This is an ad network. (Privacy Policy)

Openx

This is an ad network. (Privacy Policy)

Rubicon Project

This is an ad network. (Privacy Policy)

TripleLift

This is an ad network. (Privacy Policy)

Say Media

We partner with Say Media to deliver ad campaigns on our sites. (Privacy Policy)

Remarketing Pixels

We may use remarketing pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to advertise the HubPages Service to people that have visited our sites.

Conversion Tracking Pixels

We may use conversion tracking pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to identify when an advertisement has successfully resulted in the desired action, such as signing up for the HubPages Service or publishing an article on the HubPages Service.

Statistics
Author Google Analytics	This is used to provide traffic data and reports to the authors of articles on the HubPages Service. (Privacy Policy)
Comscore	ComScore is a media measurement and analytics company providing marketing data and analytics to enterprises, media and advertising agencies, and publishers. Non-consent will result in ComScore only processing obfuscated personal data. (Privacy Policy)
Amazon Tracking Pixel	Some articles display amazon products as part of the Amazon Affiliate program, this pixel provides traffic statistics for those products (Privacy Policy)
Clicksco	This is a data management platform studying reader behavior (Privacy Policy)

Statistics

Author Google Analytics

This is used to provide traffic data and reports to the authors of articles on the HubPages Service. (Privacy Policy)

Comscore

ComScore is a media measurement and analytics company providing marketing data and analytics to enterprises, media and advertising agencies, and publishers. Non-consent will result in ComScore only processing obfuscated personal data. (Privacy Policy)

Amazon Tracking Pixel

Some articles display amazon products as part of the Amazon Affiliate program, this pixel provides traffic statistics for those products (Privacy Policy)

Clicksco

This is a data management platform studying reader behavior (Privacy Policy)

Yahoo Hack

Arts and Design

Autos

Books, Literature, and Writing

Business and Employment

Education and Science

Entertainment and Media

Family and Parenting

Fashion and Beauty

Food and Cooking

Games, Toys, and Hobbies

Gender and Relationships

Health

Holidays and Celebrations

Home and Garden

HubPages Tutorials and Community

Personal Finance

Pets and Animals

Politics and Social Issues

Religion and Philosophy

Sports and Recreation

Technology

Travel and Places

About Us

This website uses cookies

Yahoo Hack

Related Discussions

This website uses cookies