Earlier today, news broke that a file containing over 400,000 usernames and passwords, apparently stolen from a Yahoo service by a hacker collective, was posted online. The passwords appeared in “plaintext” (or “cleartext”), meaning they were unencrypted. A security site that analyzed the posted data determined that the accounts were not just with Yahoo but also with other online services, including Gmail, AOL, Hotmail, and others, as well as a number of .GOV and .MIL addresses

On Monday, July 9, hundreds of thousands of Internet users could lose Internet access because of DNS Changer malware from Rove Digital, an illicit online company shut down by police last year. And while global law enforcement agencies and Internet companies warn Web surfers to clean the malware off infected computers, Consumer Reports online experts also warn not to fall for online scams claiming to “disinfect” your PC from online risks. Last year, an Internet consortium established a stop-gap network of safe computer servers to deal with the illicit computer code, which modifies Domain Name Servers (DNS) to direct unsuspecting Internet users to Rove Digital’s computer servers rather than proper websites and Web search results.

Reports began to surface earlier today that 6.5 million passwords that appear to be from popular social-networking site LinkedIn had shown up online, in an encrypted form, —apparently posted by a hacker who was asking for help in deciphering them. An additional 1.5 million of these encrypted “hashes” appear to be passwords for dating site eHarmony, according to Ars Technica. LinkedIn confirmed on its blog that “some of the passwords that were compromised correspond to LinkedIn accounts” and that it is continuing to investigate

Beware of Facebook Timeline removal tools


There could be a security risk with Facebook’s Timeline, the graphic and chronological interface the social-media giant is rolling out to Facebook subscribers. Suspicious online tools and websites purporting to be Timeline-removal aids could be putting millions of Facebook users in digital danger, warns one online security expert. Graham Cluely, a senior technology consultant at Sophos, a global online security firm in Abingdon, England, notes that websites are targeting Facebook members who strongly dislike the Timeline interface

Some postal customers are getting bogus e-mails about a package delivery or online postage charges that contain a link or attachment that, when opened, installs a virus that can steal personal information.

Recent studies suggest that there are 25 million homes in the U.S with a TV connected to the Web, a figure that could quadruple by 2016. And a security expert says that those Web-connected TVs and other home entertainment gear could be tempting and easy targets for computer hackers.

Microsoft Windows XP retiring in 2014


Microsoft yesterday announced a two-year countdown to the end of its support of the Windows XP operating system and Office 2003. On April 8 of 2014, Microsoft will no longer ship security updates or hot fixes for XP and Office 2003

Earlier this month, Google launched a new approach to its user policy, in which it links data from all the Google accounts that you sign in to use—and launched a firestorm of privacy concerns as well.

The operator of social game site RockYou has agreed to settle charges that it failed to protect user privacy, allowing hackers to access the e-mail addresses and e-mail passwords of 32 million users, including children. According to the Federal Trade Commission, many consumers used RockYou to make slide shows from their personal photos

The Federal Trade Commission today released a new framework for protecting your privacy online. The final report sets forth best practices for businesses to protect your privacy and give you greater control over the collection and use of personal data. The FTC also recommended that Congress consider enacting general privacy legislation, data security and breach notification legislation, as well as data broker legislation