Skip to main content

Yahoo Confirms Data Breach of 500-Million Accounts which Includes Passwords

Yahoo has finally announced that at least 500 million users have been the victims of the state-sponsored attack that took place nearly 2-years ago and this is probably the most massive case of the data breach in the history of Internet. The data breach included information including names, email addresses, phone numbers, date of birth, hashed passwords and in some cases also the security questions. However, on the brighter side, the investigations have revealed that stolen information does not include payment card data and bank account information.


The very fact that it was carried on by a state-sponsored actor, the attack only seems more sinister. Unlike individuals State Sponsored attackers are the highly motivated group who have set objectives in line with political or military interests of any country. Also, it is very rare for state-sponsored attackers to siphon off the money from the stolen details and instead they keep collecting the data over a long period of time to gain a leverage over the victim. While most of us might raise an eyebrow on why Yahoo took 2-years to confirm the attack, its simple State-sponsored attacks often go unnoticed since they use unobtrusive methods and generic ways to gain access they kind of blend in and it’s very hard to track them.

The unravelling of the data theft comes at a time when Yahoo CEO Marissa Mayer is steering the company towards an acquisition by Verizon. The attack also means that some users might stay away from Yahoo services and this is something that will dent the company’s advertising revenue which has not been impressive lately.

It all started in July when a hacker claimed to have hundreds of millions of stolen Yahoo logins for sale in the dark internet and this lead Yahoo to conduct a much deeper investigation which further revealed that the data breach was a state-sponsored attack. The leaked detail will make it extremely easy for the attackers to hijack identities and use the personal data.

If you are a Yahoo user it’s advised to change your password and make sure the new password is strong. Also, make it a point to change passwords and security questions at regular intervals.

© Raju PP for Technology Personalized, 2016. This Feed is for personal non-commercial use only. If you are not reading this material in your news aggregator, the site you are looking at is guilty of copyright infringement. Please contact us, so we can take legal action immediately. If you are on Twitter you can follow me @rajupp! | Permalink |

The post Yahoo Confirms Data Breach of 500-Million Accounts which Includes Passwords appeared first on Technology Personalized.


Related Stories

from Technology Personalized


Popular posts from this blog

How to Get SMS Alerts for Gmail via Twitter

How do you get SMS notifications on your mobile phone for important emails in your Gmail? Google doesn’t support text notifications for their email service but Twitter does. If we can figure out a way to connect our Twitter and Gmail accounts, the Gmail notifications can arrive as text on our mobile via Twitter. Let me explain:Twitter allows you to follow any @user via a simple SMS. They provide short codes for all countries (see list) and if you text FOLLOW to this shortcode following by the  username, any tweets from that user will arrive in your phone as text notifications. For instance, if you are in the US, you can tweet FOLLOW labnol to 40404 to get my tweets as text messages. Similarly, users in India can text FOLLOW labnol to 9248948837 to get the tweets via SMS.The short code service of Twitter can act as a Gmail SMS notifier. You create a new Twitter account, set the privacy to private and this account will send a tweet when you get a new email in Gmail. Follow this account …

Another SEO tool drops the word “SEO”

This guest post is by Majestic’s Marketing Director, Dixon Jones, who explains the reasons for their recent name change.
Majestic, the link intelligence database that many SEOs have come to use on a daily basis, has dropped the “SEO” from it’s brand and from its domain name, to become Since most people won’t have used Google’s site migration tool before, here’s what it looks like once you press the “go” button:

In actual fact – there’s a minor bug in the tool. The address change is to the https version of (which GWT makes us register as a separate site) but that message incorrectly omits that. Fortunately, elsewhere in GWT its clear the omission is on Google’s side, not a typo from the SEO. It is most likely that the migration tool was developed before the need for Google to have separate verification codes for http and https versions of the site.
The hidden costs of a name change
There were a few “nay sayers” on Twitter upset that Majestic might be deserting it…

6 types of negative SEO to watch out for

The threat of negative SEO is remote but daunting. How easy is it to for a competitor to ruin your rankings, and how do you protect your site? But before we start, let’s make sure we’re clear on what negative SEO is, and what it definitely isn’t.Negative SEO is a set of activities aimed at lowering a competitor’s rankings in search results. These activities are more often off-page (e.g., building unnatural links to the site or scraping and reposting its content); but in some cases, they may also involve hacking the site and modifying its content.Negative SEO isn’t the most likely explanation for a sudden ranking drop. Before you decide someone may be deliberately hurting your rankings, factor out the more common reasons for ranking drops. You’ll find a comprehensive list here.Negative off-page SEOThis kind of negative SEO targets the site without internally interfering with it. Here are the most common shapes negative off-page SEO can take.Link farmsOne or two spammy links likely won’…