Yahoo confirmed the account information, including personal information such as names, passwords, birthdays, and email addresses, of least 500 million users was stolen by hackers two years ago.

In a statement, Yahoo said user information was compromised in 2014 by what it believed was a “state-sponsored actor.” It did not name the country involved.

The company, based in Sunnyvale, Calif., said it was working with law enforcement officials, and resetting passwords and security questions. It encouraged users to exam their online accounts for suspicious activity and watch for suspicious emails.

The breach seemed connected to a Yahoo investigation, that began this summer, after claims made by a hacker going by the online handle peace_of_mind.

Yahoo stated, at the time it was aware of the hacker's assertion but rebuffed its legitimacy. The company since determined that the breach is genuine and that it's even worse than originally believed, Technology news website Recode reported Thursday, citing unnamed sources familiar with the investigation.

The announcement also has potentially bigger ramifications for the $4.8 billion sale of Yahoo's core business, at the center of this attack, to Verizon.

“Every day we receive hard data that demonstrates why we all must be on high alert when it comes to Internet security. From the everyday consumer to the largest enterprise, we are constantly under attack from people and organizations that want to profit from stealing our personal information. Only by changing the way we think about Internet security and deploying technology that provides full end-to-end coverage, will we be able to stop cybercriminals from profiting,” John Peterson, vice president/general manager, at Clifton, N.J.-based cybersecurity firm Comodo Enterprise, said.

Peterson added, “End users can help protect themselves by staying on top of their own password hygiene. They should use strong passwords – a combination of uppercase, lowercase and special characters – and make them longer than they'd like them to be.”

Complete your profile to continue reading and get FREE access to CUTimes.com, part of your ALM digital membership.

Your access to unlimited CUTimes.com content isn’t changing.
Once you are an ALM digital member, you’ll receive:

  • Breaking credit union news and analysis, on-site and via our newsletters and custom alerts
  • Weekly Shared Accounts podcast featuring exclusive interviews with industry leaders
  • Educational webcasts, white papers, and ebooks from industry thought leaders
  • Critical coverage of the commercial real estate and financial advisory markets on our other ALM sites, GlobeSt.com and ThinkAdvisor.com
NOT FOR REPRINT

© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.

Roy Urrico

Roy W. Urrico specializes in articles about financial technology and services for Credit Union Times, as well as ghostwriting, copywriting, and case studies. Also: writer/editor of a semi-annual newsletter for Association for Financial Technology since 1997 and history projects funded by the U.S Interior Department, National Park Service and Warren County (N.Y.).