Skip to main content
  1. Home
  2. Web
  3. Features

Update: Ever had a Yahoo account? Take these steps now to protect yourself

Bruce Brown
By

yahoo account hack how to protect yourself wr 09 23 01
Image used with permission by copyright holder
In September, Yahoo disclosed that at least a half billion Yahoo accounts were jeopardized by hackers. Names, email addresses, passwords, telephone numbers, dates of birth, security questions and answers, and more were “scraped” from Yahoo accounts in 2014. Now, in December, Yahoo has disclosed again that in August 2013, “an unauthorized third-party accessed our proprietary code to learn how to forge cookies.” The 2013 breach stole data from more than 1 billion user accounts. The information included names, email addresses, telephone numbers, dates of birth, hashed passwords, and security questions and answers, but not, says Yahoo, payment card data and bank account information. So if you’re a former or current Yahoo account holder, what does that mean to you and what can you do about it?

Updated on 12-14-2016 by Bruce Brown: Updated to include information released in December 2016 about an additional 1 billion Yahoo accounts accessed in August 2013.

Recommended Videos

Well first off, take a breath. If nothing horrible has happened to your email or other password protected accounts so far, chances are you’re actually OK, for the moment anyway. But just because nothing has happened yet, that doesn’t mean you’re safe. Sometimes hackers themselves or people who buy hacked account info hoard the data for years before taking action.

Related

So, if you had a Yahoo account anytime before the beginning of 2015, there are several steps you should take to be prudent, whether or not you use your Yahoo account now.

A general warning: Before you start to change passwords or anything else with your accounts, be very careful with any email you receive about the Yahoo security issue. Nothing Yahoo sends will ask you to click links or download attachments. Yahoo will not ask you to supply personal information via email. Even if you receive an email that looks like it’s from Yahoo, if you are asked to click a link, download an attachment, or provide personal information, the email was not actually sent by Yahoo and may be from someone trying to steal your personal information.

Change your password

Now let’s start with the different actions levels to take, from immediate to very soon.

If you have a Yahoo account, change your password and disable your security questions today. How do you do that? To start, be sure you know your current password — you’ll need it to make changes in any security settings.

In the upper right-hand corner of the Yahoo screen click on the little gear icon. If you see a menu item for “Settings,” that’s not it. Look for “Account Info,” which will probably be at the bottom of the menu. Next, click “Account Security.” At this point you will likely be required to enter your current password.

In the Account Security screen that comes up next, you will see “Change password” and “Disable security questions” in blue type while the other options are in black type. Yahoo has highlighted those two with blue letters because both were potentially compromised. Passwords were taken from all hacked accounts and unencrypted security questions and answers were stolen from many accounts.

When you click Change Password, you’ll see a new screen on which to enter a new password twice. Be sure to make up a brand new password, not one you use on any other account. More on that below.

Also remember you will need to reset your password on other devices where your old password — which will no longer work — may be stored. For example, you may check your email on a smartphone, tablet, or an ebook reader — if so you’ll need to reset each one.

Update: More than one reader has reported that when they tried to reset their Yahoo password using the standard password recovery process they were taken back to the original sign in page. One reader had success with the following, “Simple answer, don’t use password recovery but use the Hacked account or any of the other headings where you get to send a message to a support person. After three or four posts, plus posting on Yahoo Support Facebook page, I received an email from support and the passwords were reset through a Gmail account. Took way longer than I would like but it was much better than setting a completely new account.”

Disable security questions

After changing your password, click “Disable security questions” on the Account Security screen. You’ll see what your questions were, and you’ll be prompted to disable them to protect your account. You can reset your security questions later.

The next screen after disabling your security questions will present any currently listed account recovery email addresses and phone numbers. If you don’t have either, it’s a good idea to set at least one of each so you won’t be locked out of your account.

When you’ve changed your password and disabled your security settings, your Yahoo account is protected. But there’s more to do.

Change similar passwords on any non-Yahoo accounts

Hackers know that many if not most of us reuse the same passwords and security questions. Therefore, if you have ever done that — and if not, you can join a very short list — you will need to change your passwords on your other accounts because they are in jeopardy. Go to all of your other accounts including email accounts, banks accounts, social media accounts, merchant accounts such as Amazon, media accounts like Netflix, and any other online accounts you use and change the passwords. Also, change the security questions and answers for any account where they were required.

There are other measures you can take to protect your accounts including two-factor authentication, using the Yahoo Account Key, or specialized password security programs. The first steps, though, with no delay, are to change your Yahoo password, disable personal security questions, and then sweep through all your existing accounts (and former accounts if you can remember them) and reset all passwords.

Updated on 10-02-2016 by Bruce Brown: Updated to include reader suggestion to get password change assistance from Yahoo support.

Editors' Recommendations

Topics
Bruce Brown
Bruce Brown
Contributing Editor
Digital Trends Contributing Editor Bruce Brown is a member of the Smart Homes and Commerce teams. Bruce uses smart devices…
How to find archived emails in Gmail and return them to your inbox
A smartphone sitting on a wooden table, showing the Gmail app's inbox on its screen.

If you’re looking to clean up your Gmail inbox, but you don’t want to delete anything permanently, then choosing the archive option is your best bet. Whenever you archive an email, it is removed from your inbox folder while still remaining accessible. Here’s how to access any emails you have archived previously, as well as how to move such messages back to your regular inbox for fast access.

Read more
Samsung Spring Sale: Save on monitors, phones, TVs, and more
Samsung Galaxy S24 Ultra in Titanium Gray with S Pen on back.

Samsung, one of the most trusted brands in the electronics industry, has rolled out monitor deals, phone deals, TV deals, and price cuts for other types of devices in the Samsung Spring Sale. While it's going to run until March 10, it's highly recommended that you finish your shopping as soon as you can because for some of the popular offers, there's a chance that their stocks run out quickly. To help you make a quick decision, we've highlighted our favorite bargains below, but feel free to look at everything that's available in the ongoing sale -- just do it fast to make sure that you don't miss out on the savings.

What to buy in the Samsung Spring Sale

Read more
Is there a Walmart Plus free trial? Get a month of free delivery
Walmart logo.

Take a moment and think about how often you shop at your local Walmart. Is it weekly? Daily? If either of those is the case, it might be time to upgrade your shopping experience. The Walmart Plus free trial is your chance to check out what the retail giant has to offer. Walmart Plus is basically Amazon Prime for Walmart. You get free shipping on most orders, early access to deals and new product drops (like PS5 restocks), the best grocery delivery, and more. If Walmart is your go-to option for the best smart home devices or the best tech products in general, you should get a membership. If you want to test out the service, you can sign up for a free trial. We have all the information you need right here.
Is there a Walmart Plus free trial?
There is a Walmart Plus free trial available, and it’s one of the best free trials we’ve seen in terms of how many great features and conveniences you’re able to access. This is really a reflection of how great the Walmart Plus service is, as the Walmart Plus free trial is essentially a 30-day experience of what it would be like to be a paid Walmart Plus subscriber. A Walmart Plus membership can help you save over $1,300 per year, so taking advantage of the 30-day free trial is a great way to get in there and see what those savings will look like. And if grocery delivery is what you're really after, an alternative you might consider is the Instacart free trial -- they have more than one program to try!

As part of a Walmart Plus free trial, you’ll get free shipping with no minimum order, so even small orders will qualify for free shipping. You’ll get fresh groceries and more with no delivery fees, and all at the same low in-store prices Walmart shoppers are used to. Walmart Plus members, and Walmart Plus free trial members, get exclusive access to special promotions and events, as well as a savings of up to 10 cents per gallon on fuel. A new addition to the perks of being a Walmart Plus member is free access to Paramount Plus, a top-notch streaming service with more than 40,000 TV episodes and movies. All of this is accessible for 30 days through a Walmart Plus free trial, and once those 30 days are up, Walmart Plus is just $8.17 per month or $98 annually.

Read more