(snip)
The tech site CNet, also reports that Yahoo has suffered a major password breach. According to CNet, the hacker collective called D33D Co. published login credentials obtained from Yahoo's "Contributor Network" site using a "union-based SQL injection," a method for tricking the database on a poorly secured site to divulge private information. CNet reports that the Yahoo Contributor Network, formerly a content farm called Associated Content, was purchased by Yahoo for more than $100 million. According to CNet, the published files contain "huge number" of login credentials for many other email services. (Gmail: 106,873; Hotmail: 55,148, AOL: 25,521).

CNet indicts Yahoo of a "significant security failure," explaining that passwords are usually "cryptographically masked" in a process called "hashing" to prevent the type of attack that occurred.

The hackers claim they released the information to point out Yahoo's lax security and not for any mischief.

What to do?

CNet advises that everyone with a Yahoo ID should assume that it is no more secure and that they should change their passwords.
The website advises that you should change your passwords, especially if you have used the same password for any other major service, particularly for sensitive accounts such as banking, investing, or email.

Read more: http://www.digitaljournal.com/article/328439