Yahoo Mail is perhaps the most widely used free web based email provider. This is why its the most targeted email service as far as phishing attacks are concerned. Now Yahoo introduces the “sign-in seal” in Yahoo mail. A sign-in seal is a secret message or photo that Yahoo! will display on your computer only. Look for it every time you sign in to make sure you’re on a genuine Yahoo! site. If the message, photo, or colors are different, you may have landed on a phishing site. The limitation of this is with public computers as stated in the FAQ.
What is phishing?
Phishing – a play on the word “fishing” – is an attempt to steal your password and private account info. Phishers can set up fake web sites that look like those of trusted companies like Yahoo! to trick you into disclosing your user name and password. To learn more about phishing, visit the Yahoo! Security Center.
How does a sign-in seal protect me?
A sign-in seal is a secret between the computer you set it up on and Yahoo!. So when you sign in to Yahoo! from this computer, your sign-in seal tells you that you’re seeing a genuine Yahoo! site, not a phishing site.
Why do I have to set up a seal on each computer I use?
Your sign-in seal is associated with your computer, not your ID. It is a convenient way to instantly recognize a genuine Yahoo! sign-in page and be sure that you’re not on a page created by fraudsters attempting to steal your Yahoo! ID and password. Because we associate your sign-in seal with your computer, after you create a seal, there are no additional steps to signing in. Even if a phisher knows or guesses your ID or other personal information, they cannot use it to discover your sign-in seal. Note: Yahoo! will never ask for your Yahoo! ID or password in order to set up or display your sign-in seal.
What if I share this computer with family or friends?
If they use Yahoo! too, you should show them the sign-in seal you’re creating for this computer. Even better, create a sign-in seal together so that everyone will be happy to use and recognize the seal.
What about public computers?
Always use care when signing in on public computers, such as those located in libraries or Internet cafes. Administrators at these locations may create sign-in seals to help you identify Yahoo! on these machines, but you should not replace one of these seals with your own. It’s best to rely on other methods to to ensure you’re signing in to a genuine Yahoo! site.
Will this sign-in seal protect me on sites other than Yahoo!?
No. The sign-in seal that you create here will only appear on Yahoo! sign-in screens. For more information about how to protect yourself online no matter where you are, see the Yahoo! Security Center.
What if I don’t see my sign-in seal?
You could be on a fraudulent site, but there might be other reasons why you can’t see it. For example, someone else using your computer may have deleted or changed your seal, your cookies or files on your computer may have been deleted, or you’re using a partner or international Yahoo! site (like BT Yahoo! or Yahoo! India). To be safe, look for these other clues to make sure you’re on a genuine Yahoo! sign-in screen.