September 22, 2016 by

Yahoo Set to Confirm a “Massive” Data Breach

Technology giant Yahoo is preparing to confirm a massive data breach that it suffered in 2012, an incident that exposed several hundred million user accounts according to the hacker selling the breached data.

Yahoo will soon confirm what users and the cybersecurity world has known for a while now. The company will confirm data breach, so massive that it is likely to figure among the biggest on record.  

Recode has cited a source close to the situation that the hacking incident has effected several hundred million accounts. While not being specific about the extent of the breach, “they noted that it is widespread and serious.”

Yahoo is likely to see government investigations and legal action in relation to the breach. In August, Motherboard broke the news of a cybercriminal named “Peace” who was selling credentials of 200 million Yahoo users from a 2012 breach. The data was put up for sale on the dark web in an underground marketplace, for just over $1,800. The data included user details including their easily decrypted passwords, usernames and birthdays along with other personal information.

Soon after the news broke, Yahoo said it was “aware of the claim” but did not reveal any other information including confirming or denying the claim. The tech giant did not issue a mandatory password reset to users, either. Sources for Recode say that while the company might have to now, “it may be a case of too little, too late.”

Recode’s source says that the estimate of 200 million affected user accounts isn’t far off.

“It’s as bad as that,” said one Recode source. “Worse, really.”

 The announcement is expected to occur sometime this week at a time when Yahoo’s core business is in the midst of $4.8 billion sale to Verizon. Incidentally, it’s core business is also at the core of this hack and it is yet unknown if Yahoo’s admittance of the breach would have any implications on its impending sale.

Image credit: Pixabay.

About the author

Image of Author

LIFARS is the global leader in Digital Forensics and Cyber Resiliency Services. Our experience spans two decades working on high profile events, often in concert with Law Enforcement Agencies around the world. Our proprietary methodology derives directly and indirectly from our experience working with and for U.S. Intelligence Agencies, Interpol, Europol, and NATO. We are solely dedicated to Cyber Resiliency and thus pay close attention to all aspects of our clients’ engagements experience while providing a strategic and integrated array of services to minimum risk and disruption while protecting your brand.

Related articles

Data Breach: Florida Warns of 30,000 Medical Records Leak Due to Phishing

Florida’s health agency has warned of a data breach that may have exposed the data of up to 30,000...

Read more arrow_forward

India’s National ID Database of 1.2 Billion People Breached for $8

An Indian news publication has reported that the government’s biggest citizen database, a register...

Read more arrow_forward

Security Researchers Discover Trove of 1.4 Billion Credentials

Security researchers at dark web monitoring firm 4iQ have stumbled upon a massive 41GB data file of...

Read more arrow_forward