Yahoo says it is investigating reports of 200 million user credentials advertised for sale on the Dark Web by a hacker that goes by the handle “peace_of_mind”. Lamar Bailey, Sr. Director, Security R&D at Tripwire commented below.
Lamar Bailey, Sr. Director, Security R&D at Tripwire:
“Credentials get sold and resold many times after a breach. It is always unclear where the credentials came from and if they are even real. It is a lot like buying a Rolex from a vendor at a swap meet, you never know what you might get. It is still a good reminder to use strong passwords, change them periodically, and don’t reuse them for different sites.”