The stolen information will allow scammers to send authentic-looking email messages that appear to come from a bank or other business with whom the user has an existing relationship. The emails will try to trick users into parting with information such as their log-in credentials to their bank or other online account, or it could try and trick them into downloading malware on to their systems. Users that don't fall for such scams should be fine.

Will the stolen information allow the attackers to break into my bank account? No. Only email addresses and names were compromised, not login credentials.

I just received an email from my bank informing me about the breach. What steps do I need to take to protect myself? The first thing to do is relax. The stolen information by itself will not allow the intruders to break into any of your online accounts or to commit identity theft. The main thing to remember is not to respond or follow links in any email that purports to come from your bank or other business asking you to update or validate your account information or to provide other personal details. Such links only take you to a bogus website set up to collect personal data, or to download malware on your system.

Don't respond to emails that threaten to close or suspend your account unless you provide certain personal information immediately. Never send your username and password in response to any email that asks for it, however authentic-looking the email may appear. Legitimate companies do not typically ask for such information in an email.

Should I change my email address? That probably would be the safest thing to do, but it can be a huge hassle. For the moment, the best option is to be extra vigilant in watching for phishing attempts.