Yahoo Loses 453,000 User Passwords to Hackers
July 12, 2012 4:45 PM
comment(s) - last by
Hackers say data was posted as a warning
) all over again!
Hackers with "D33ds Company" have posted 453,000 passwords from Yahoo! Inc.'s (
) Voices -- a part of its news service. Bafflingly, Yahoo administrators apparently opted for no encryption of the passwords, storing them in plain-text.
Hackers scooped up the passwords using
The hackers write on their text dump:
We hope that the parties responsible for managing the security of this subdomain will take this as a wake-up call, and not as a threat. There have been many security holes exploited in Web servers belonging to Yahoo! Inc. that have caused far greater damage than our disclosure. Please do not take them lightly.
They were at least kind enough not to publish details of how the penetrated Yahoo's servers.
Some of the 453,000 compromised accounts. [Image Source: TrustedSec]
Yahoo insists that it's not that big a deal, saying that only 5 percent of the user passwords would pass as valid passwords on its other sites, hence most users day-to-day passswords were likely not compromised.
It does apologize, though, for the inconvenience,
At Yahoo! we take security very seriously and invest heavily in protective measures to ensure the security of our users and their data across all our products. We are fixing the vulnerability that led to the disclosure of this data, changing the passwords of the affected Yahoo! users and notifying the companies whose users accounts may have been compromised.
Multiple military and government email addresses were found among the users with leaked passwords.
This article is over a month old, voting and posting comments is disabled
Still a lot
7/15/2012 7:39:37 AM
"Yahoo insists that it's not that big a deal, saying that only 5 percent of the user passwords would pass as valid passwords on its other sites, hence most users day-to-day passswords were likely not compromised."
That's still a lot and even the ones that aren't used on other Yahoo sites will certainly help bolster the effectiveness of dictionary attacks in the future.
Also: Possessives usually have apostrophes and you clearly didn't run this through a spell checker. "Passswords?" Come on!
"I mean, if you wanna break down someone's door, why don't you start with AT&T, for God sakes? They make your amazing phone unusable as a phone!" -- Jon Stewart on Apple and the iPhone
Nokia is the Victim of SQL Injection, Loses Developer Records
August 29, 2011, 8:37 AM
New DNA Computer Can Calculate Square Roots of Integers Up to 15
June 3, 2011, 8:37 PM
Edward Snowden Presents Tech to Stop Government Spying
July 21, 2014, 12:00 PM
Verizon FiOS Network Upgrade Brings Symmetrical Upload/Download Speeds
July 21, 2014, 8:33 AM
Amazon Launches First Fire Phone TV Spot, Spends 30 Seconds Promoting Prime
July 18, 2014, 11:17 AM
Samsung Continues to Pick on Apple's iPad in Two New Commercials
July 13, 2014, 5:35 PM
Despite Legal Threats Google Begins Posting Warnings of ISP Throttling
July 7, 2014, 5:52 PM
Russia Introduces Bill to Keep Citizens' Data Within the Country
July 3, 2014, 2:34 PM
Most Popular Articles
Quick Note: Nokia Devices Now Receiving Windows Phone 8.1 Update
July 15, 2014, 10:42 AM
Microsoft Kills Entertainment Unit, May Shelve Flagship Lumia "McLaren"
July 18, 2014, 7:40 PM
Boeing 777 Malaysian Airlines Flight 17 Crashes in Ukraine
July 17, 2014, 1:00 PM
Tesla Confirms “Model III” EV with 200+ Mile Range, Blames Ford for Missed "SEX"
July 15, 2014, 9:12 PM
FBI Report Suggests That Self-Driving Cars Could Be Used as Rolling Bombs
July 16, 2014, 11:02 AM
Latest Blog Posts
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
Tesla vs. BMW: Who Has the Safer EV?
Feb 1, 2014, 2:56 PM
Justice Leaks Details of Next HTC One Two Flagship Phone
Dec 5, 2013, 4:04 PM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information