Breach of Yahoo’s password puts users of other sites at risk

Date: 13-07-2012 7:27 pm (10 years ago) | Author: franel
[1] 2 3
- at 13-07-2012 07:27 PM (10 years ago)
(m)
«§» 13 July 2012

More than 400,000 Yahoo Inc user names and passwords were stolen and published on the Web, putting other websites at risk as well, after hackers exploited a vulnerability in Yahoo’s computer systems.



Some logins for Google Inc, AOL Inc and Microsoft Corp services were among those compromised. The three companies said they required affected users to reset passwords for sites including Gmail, AOL, Hotmail, MSN and Live.com.

Yahoo issued a statement apologizing for the breach, the latest setback for a company that has lost two chief executives in a year and is struggling to revive stalled revenue growth.

Chairman Alfred Amoroso acknowledged that Yahoo had experienced a “tumultuous” year at its annual shareholder meeting on Thursday morning. Interim CEO Ross Levinsohn told attendees he was optimistic about the company’s progress.

The breach prompted criticism from security experts who said that a major Internet firm like Yahoo should do a better job at protecting user data.

“This points to some very lax security practices,” said Rob D’Ovidio, associate professor of criminal justice at Drexel University.

As an example, he noted that the hackers were able to produce more than 400,000 cleartext passwords within a day. That indicates that Yahoo either did not encrypt them at all or used an encryption method that was easy to crack, he said.

The professional networking service LinkedIn recently came under similar criticism. Security experts chided the company for failing to use sophisticated encryption practices to secure its passwords, millions of which were released following a breach last month.

WHAT HAPPENED?

Yahoo spokeswoman Dana Lengkeek said “an older file” had been stolen from Yahoo Contributor Network, an Internet publishing service that Yahoo purchased about two years ago. It helps writers, photographers and videographers to sell their work over the Web.

“We are fixing the vulnerability that led to the disclosure of this data, changing the passwords of the affected Yahoo! users and notifying the companies whose users’ accounts may have been compromised,” she said.

AOL said the Yahoo data published on the Web included valid passwords for 1,699 accounts. Microsoft and Google declined to provide similar numbers.

Other firms whose customers were at risk include Comcast Corp, Verizon Communications Inc and AT&T, Rapid7 researcher Marcus Carey said. He estimated that tens of thousands of accounts of users of services other than Yahoo were affected by the breach.

AT&T and Verizon did not have any immediate comment. Officials with Comcast could not be reached.

AOL Senior Vice President David Temkin said spammers typically use credentials like the ones stolen from Yahoo to break into email accounts and use them to send out spam.

“In this case, I think we actually got ahead of it before the people who stole those accounts were able to use them,” Temkin said.

The five most popular passwords in the group were “123456″, “password”, “welcome” and “ninja”, according to an analysis by anti-virus software maker ESET.


Posted: at 13-07-2012 07:27 PM (10 years ago) | Hero
- prince775 at 14-07-2012 07:00 PM (10 years ago)
(m)
Am not affected
Posted: at 14-07-2012 07:00 PM (10 years ago) | Gistmaniac
Reply
- onlyGodknows at 14-07-2012 07:08 PM (10 years ago)
(m)
Yahoo yahooo
Posted: at 14-07-2012 07:08 PM (10 years ago) | Upcoming
Reply
- verah at 14-07-2012 07:10 PM (10 years ago)
(f)
he no concern me cos my own nor dey among

Posted: at 14-07-2012 07:10 PM (10 years ago) | Gistmaniac
Reply
- Sophyrocks at 14-07-2012 07:43 PM (10 years ago)
(f)
I see.

Posted: at 14-07-2012 07:43 PM (10 years ago) | Gistmaniac
Reply
- chicco77 at 14-07-2012 08:06 PM (10 years ago)
(f)
 Undecided Undecided
Posted: at 14-07-2012 08:06 PM (10 years ago) | Addicted Hero
Reply
- zoe61 at 14-07-2012 08:26 PM (10 years ago)
(f)
i don't even use Yahoo
Posted: at 14-07-2012 08:26 PM (10 years ago) | Hero
Reply
- Solidstonez at 14-07-2012 09:12 PM (10 years ago)
(f)
I BETTER GO CHECK FAST FAST

Posted: at 14-07-2012 09:12 PM (10 years ago) | Addicted Hero
Reply
- dlimelite at 14-07-2012 11:20 PM (10 years ago)
(f)
Im not affected Na yahoo yahoo
Posted: at 14-07-2012 11:20 PM (10 years ago) | Hero
Reply
- lee22 at 14-07-2012 11:54 PM (10 years ago)
(f)
ok
Posted: at 14-07-2012 11:54 PM (10 years ago) | Gistmaniac
Reply
- Senegal at 15-07-2012 01:29 AM (10 years ago)
(m)
 Huh?
Posted: at 15-07-2012 01:29 AM (10 years ago) | Hero
Reply
- bright1love at 15-07-2012 01:32 AM (10 years ago)
(m)
Quote from: prince775 on 14-07-2012 07:00 PM
Am not affected

HOW U TAKE NO SAY E NO AFFECT YOU...U NO GET ANYTHING INSIDE NA WHY DEY LEAVE
Posted: at 15-07-2012 01:32 AM (10 years ago) | Upcoming
Reply
- Mindcare at 15-07-2012 02:07 AM (10 years ago)
(m)
I hope I'm saved
Posted: at 15-07-2012 02:07 AM (10 years ago) | Upcoming
Reply
- aso4life1 at 15-07-2012 02:52 AM (10 years ago)
(m)
Quote from: dlimelite on 14-07-2012 11:20 PM
Im not affected Na yahoo yahoo
How do you know? oga change your passwords first

Posted: at 15-07-2012 02:52 AM (10 years ago) | Hero
Reply
- franel at 15-07-2012 03:05 AM (10 years ago)
(m)
hmm, apart from yahoo. There're so many complains about the internet of recent. And I kinda think there're solutions to all of them.

Posted: at 15-07-2012 03:05 AM (10 years ago) | Hero
Reply
- dickman2 at 15-07-2012 03:06 AM (10 years ago)
(m)
 Shocked Shocked Shocked Shocked Shocked
Posted: at 15-07-2012 03:06 AM (10 years ago) | Addicted Hero
Reply
- Shydaimma at 15-07-2012 03:38 AM (10 years ago)
(f)
 Undecided Undecided too bad. oya make dem do somthin fast fast

Posted: at 15-07-2012 03:38 AM (10 years ago) | Hero
Reply
- dickman2 at 15-07-2012 04:01 AM (10 years ago)
(m)
Quote from: Shydaimma on 15-07-2012 03:38 AM
Undecided Undecided too bad. oya make dem do somthin fast fast
like what..
Posted: at 15-07-2012 04:01 AM (10 years ago) | Addicted Hero
Reply
- jamesbondchick at 15-07-2012 04:27 AM (10 years ago)
(f)
Hahahahaha yahoo dey do yahoo!

Posted: at 15-07-2012 04:27 AM (10 years ago) | Gistmaniac
Reply
- jamesbondchick at 15-07-2012 04:28 AM (10 years ago)
(f)
Hahahahaha yahoo dey do yahoo!

Posted: at 15-07-2012 04:28 AM (10 years ago) | Gistmaniac
Reply
[1] 2 3