Hackers have been hard at work, releasing passwords with aplomb. LinkedIn, eHarmony, Last.fm, Formspring and Yahoo have all been compromised. Yahoo and Formspring confirmed breaches and instituted a fix in less than 24 hours. The breach also shows that Yahoo failed to require users to select strong passwords. Any business or government agency that stores users’ passwords needs to do a better job of not just deleting passwords, but ensuring they’re actually secure based on salt.”]
Source: https://www.darkreading.com/attacks-breaches/yahoo-password-breach-7-lessons-learned