According to the blog Naked Security, the raid was made by a group of hackers calling itself D33DS Company and they published all 453,491 combinations of email addresses and passwords of the service, all unencrypted. It is unclear whether the database kept text passwords or if the group was able to decrypt them before publication, but they say they have had access to data using SQL Injection.
Voices Yahoo was announced in December last year and it is a portal where Yahoo users who have some expertise in any field can publish articles about what they know. By the time of this post, Yahoo had not spoken officially about the attack.
All these recent leaks and attacks the database serve as a warning to anyone who is smart. There has never been a better time to change your password - and be careful not to use the same combination at different sites.
Update | Yahoo confirmed that the leak of passwords actually happened, but it is an old file of the site. According to the company less than 5% of the combinations would be valid username and password - and the people who were affected have already been alerted.
