“Although there is no indication that the encryption on the passwords or answers to security questions was broken, as a precautionary measure, we nevertheless strongly encourage our users and employees to reset their passwords used for any AOL service and, when doing so, also to change their security question and answer. reportes” AOL in the blog post.
“The ongoing investigation of this serious criminal activity is our top priority,” “We are working closely with federal authorities to pursue this investigation to its resolution. Our security team has put enhanced protective measures in place, and we urge our users to take proactive steps to help ensure the security of their accounts.” states AOL in the blog post.
“Importantly, we have no indication that the encryption on the passwords or the answers to security questions was broken. In addition, at this point in the investigation, there is no indication that this incident resulted in disclosure of users’ financial information, including debit and credit cards, which is also fully encrypted.” continues the official post.
- Do not click on any suspicious links or attachments in the email you received.
- When in doubt, contact the sender to confirm that he or she actually sent the email to you or not.
- Never provide your personal or financial information through an email to someone you do not know.
- AOL will never ask you for your password or any other sensitive personal information over an email.
- If you found yourself a victim of spoofing, inform your friends that your emails may have been spoofed and warn them to avoid clicking the links in suspicious emails.
(Security Affairs – AOL, Data Breach)