- Change your password and security questions and answers for any other accounts on which you used the same or similar information used for your Yahoo account.
- Review your accounts for suspicious activity.
- Be cautious of any unsolicited communications that ask for your personal information or refer you to a web page asking for personal information.
- Avoid clicking on links or downloading attachments from suspicious emails.
But really, people, if you have a Yahoo account of any sort, you probably shouldn't wait to hear anything from Yahoo before you change your password, set up new verification settings, and even enable two-step verification on your accounts. Here's an FAQ page the company set up to help you out. Go, go, go.
If you don't have a password to change right now, here's what Verizon -- which bought Yahoo's core business for $4.83 billion (although the deal's not final) -- had to say about the monstrous breach, according to a report by Mashable:
"Within the last two days, we were notified of Yahoo's security incident. We understand that Yahoo is conducting an active investigation of this matter, but we otherwise have limited information and understanding of the impact. We will evaluate as the investigation continues through the lens of overall Verizon interests, including consumers, customers, shareholders and related communities. Until then, we are not in position to further comment."