Yahoo Announces 500m Accounts Were Compromised
Itâs been announced that at least 500m Yahoo accounts have been breached.
Personal data includes names, passwords, emails, phone numbers, and security questions. Yahoo was officially hacked in early 2014 by a state-sponsored hacking collective. Yahoo is currently investigating the hackÂ in cooperation withÂ law enforcement. Yahoo stated that it does not believe any bank or credit card detailsÂ were compromisedÂ in the hack.
âThe ongoing investigation suggests that stolen information did not include unprotected passwords, payment card data, or bank account information. Payment card data and bank information are not stored in the system that te investigation has foundÂ to beÂ affected,â Yahoo said in a statement.
Yahoo has begun notifying users whoÂ were affected. Anyone who hasnât changed the password to their Yahoo account since 2014 should probably change it now. Yahoo also stated that they did not breach security questions, so there will be no way for hackersÂ to get access toÂ the accounts.
âYahoo encourages users toÂ checkÂ their online accounts for suspicious activity and to change their password and security question and answers for any other accounts on which they use the same or similar information used for their Yahoo account,â the statement went on.
Yahoo also says usersÂ should beÂ careful, and watch for any emails from Yahoo containing links, attachments, or downloads, and that Yahoo is not asking for any personal information from its users.
U.S. Senator Mark Warner describes the breachÂ as being aÂ huge serious problem.
âWhite its scale puts it among the largest on record, I am perhaps most troubled by news that this breach occurred in 2014, and yet the public is only learning details of it today,â he stated.
KurtÂ BaumgartnerÂ fromÂ KasperskyÂ Lab said:
âThe company has demonstrated that it isnât quick toÂ implementÂ best practices and available security technologies, such as the delay in encrypting IM communications, implementingÂ httpsÂ for its web properties and more. These types of breaches highlight why all companies, needÂ to beÂ cybersecurity leaders, not followers.â