450,000 logins stolen. Even better: yahoo was storing them as plaintext, the absolute apex of stupidity. And if you used your yahoo/flickr password on any other service, obviously change that too.