Yahoo Acknowledges Hacking Attempt, Resets Passwords for Affected Accounts.

From Yahoo Tumblr blog:

Security attacks are unfortunately becoming a more regular occurrence. Recently, we identified a coordinated effort to gain unauthorized access to Yahoo Mail accounts. Upon discovery, we took immediate action to protect our users, prompting them to reset passwords on impacted accounts.

Based on our current findings, the list of usernames and passwords that were used to execute the attack was likely collected from a third-party database compromise. We have no evidence that they were obtained directly from Yahoo’s systems. Our ongoing investigation shows that malicious computer software used the list of usernames and passwords to access Yahoo Mail accounts. The information sought in the attack seems to be names and email addresses from the affected accounts’ most recent sent emails.

Yahoo has initiated password rest to affected accounts.

Upon reading this announcement I changed the passwords to all my Yahoo account. Yes, I do have multiple Yahoo accounts.

Yahoo Password Reset

Hacking Attempt at Apple Developer Website

Apple has sent out emails to Apple Developers explaining the outage of Apple Developer Website.

Apple Developer Website Update

Last Thursday, an intruder attempted to secure personal information of our registered developers from our developer website. Sensitive personal information was encrypted and cannot be accessed, however, we have not been able to rule out the possibility that some developers’ names, mailing addresses, and/or email addresses may have been accessed. In the spirit of transparency, we want to inform you of the issue. We took the site down immediately on Thursday and have been working around the clock since then.

In order to prevent a security threat like this from happening again, we’re completely overhauling our developer systems, updating our server software, and rebuilding our entire database. We apologize for the significant inconvenience that our downtime has caused you and we expect to have the developer website up again soon.

Apple-Developer-Center-Message-20130721

It is indeed bad news, since there is no way of telling if the intruder managed to access any informations.

Apple is using its own Apple ID service for Developer login, which has been fully operational during this period. It seems that the hacking attempt only happened on Apple Developer Website.