Yahoo notifies users of sophisticated breach methods | Inquirer Technology

Yahoo notifies users of sophisticated breach methods

/ 07:46 AM February 16, 2017

Yahoo Breach email security

In this June 5, 2014, file photo, people walk in front of a Yahoo sign at the company’s headquarters in Sunnyvale, California. Yahoo says the personal information of 500 million accounts have been stolen in a massive security breakdown that represents the latest setback for the beleaguered internet company. The breach disclosed on Thursday, Sept. 22, 2016, dates back to late 2014. Yahoo is blaming the hack on a “state-sponsored actor.” AP FILE PHOTO

SAN FRANCISCO, United States — Yahoo said Wednesday it was notifying some users that hackers may have been able to use a maneuver to break into their accounts without stealing passwords.

The latest notifications were in response to the record breach disclosed late last year affecting an estimated one billion users — which involved forging of “cookies” or files used to authenticate users when they log into their accounts.

Article continues after this advertisement

The notification indicates the investigation into the attacks are in the final stage, according to a source familiar with the matter, noting that messages had been sent to “a reasonably final list” of Yahoo users.

FEATURED STORIES

READ: Yahoo says newly discovered hack hit one billion users

A Yahoo spokesman said the company was notifying all potentially affected users and that it had “invalidated” the forged cookies.

Article continues after this advertisement

“As we have previously disclosed, our outside forensic experts have been investigating the creation of forged cookies that could have enabled an intruder to access our users’ accounts without a password,” the company said in a statement.

Article continues after this advertisement

“The investigation has identified user accounts for which we believe forged cookies were taken or used.”

Article continues after this advertisement

Yahoo announced in September that hackers in 2014 stole personal data from more than 500 million of its user accounts. It admitted another cyber attack in December, this one dating from 2013, affecting more than a billion users.

The data breaches have been a major embarrassment for a former internet leader that is in the process of selling its core operations to telecom giant Verizon for $4.8 billion.

Article continues after this advertisement

READ: Another Yahoo breach and investors are rattled

Some reports Wednesday said the two companies had agreed to discount the price by $250 million to $300 million following disclosure of the attacks.

Neither Yahoo nor Verizon commented on the reports.

Yahoo is selling its main operating business as a way to separate that from its more valuable stake in Chinese internet giant Alibaba.

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our daily newsletter

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

The share-tending entity, to be renamed Altaba, Inc., will act as an investment company. CBB

TOPICS: cookies, data breach, Email, hacking, Social Media, technology, Yahoo
TAGS: cookies, data breach, Email, hacking, Social Media, technology, Yahoo

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our newsletter!

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

© Copyright 1997-2024 INQUIRER.net | All Rights Reserved

This is an information message

We use cookies to enhance your experience. By continuing, you agree to our use of cookies. Learn more here.