Some AOL Mail accounts have been hacked last week. AOL is honest that it happened and is even telling customers to please change their passwords to be safe and sure. Security questions are also requested to be changed.
Two percent of AOL Mail owners, that’s about half a million e-mail subscribers, are said to have been compromised. Answers to security questions, contact information, passwords, and e-mail address have been breached to be used in sending fake e-mails for phishing operations. As with most scams, the e-mails contain malicious links.
AOL is now working with federal law enforcement to check on this particular attack. The company is still confident though that encrypted passwords were not accessed by the hackers. As a response to this issue, AOL also managed to change the following: Domain-based Message Authentication, Reporting, and Conformance (DMARC) policy. And as a result, any e-mail from AOL.com but sent from a non-AOL server will be rejected immediately to prevent further problems.
[via ArsTechnica]