wordpress blog stats
Connect with us

Hi, what are you looking for?

, , , ,

Yahoo admits to 2014 ‘state sponsored’ hack that stole 500M users’ data

yahoo bilboard (1)

Yahoo has blamed state sponsored hackers for stealing information of at least 500 million user accounts, reports the Wall Street Journal. The breach, which was carried out in 2014, and includes data like names, email addresses, dates of birth, telephone numbers and encrypted passwords of Yahoo customers.

More importantly, the company also mentions that encrypted and unencrypted responses to security questions and answers were also leaked, which can help hackers obtain common data such as pet names etc. of users, to hack their other accounts. The scale of this hack is the largest yet by number of users compromised, although not quite revelatory as say the Office of Personnel Management (US) hack, which compromised the data of 32 million current and former federal employees, including potential military enlistees.

Note that Yahoo has invalidated all the encrypted security questions and answers that were leaked, so they can’t be used to access a Yahoo account, but given that users tend to re use such information on other services, it puts them at risk. The company also does not provide any information about how the hack was carried out.

Verizon deal in trouble?

Interestingly, the revelation by Yahoo comes around the time it’s finalizing its $4.8 billion acquisition by Verizon. According to a Fortune report, Verizon could claim a material breach for something like this data hack, by arguing that the event has caused irreparable harm to Yahoo in terms of customer trust and usage, and back off from the deal.

Advertisement. Scroll to continue reading.

Yahoo also likely knew about the hack – in August, Motherboard reported a hacker advertising 200 million Yahoo accounts on the dark web, which Yahoo said it was aware of, but neither confirmed nor denied the legitimacy of the data. It’s not clear if these 200 million users were a part of the same hack revealing 500 million users’ data. At the time, the hacker had reported that the data was from “2012 most likely”.

Notable claims of state sponsored hacking:

– In December last year, Twitter warned some of its users that they may be targets of state-sponsored attacks and that hackers were trying to obtain sensitive data from their accounts.

– In October the same year, Facebook also warned users of state-sponsored attacks, mentioning that it would notify users if it believed accounts were targeted or compromised by an attacker suspected of working on behalf of a nation-state.

– Google had given a similar warning to users that there might be state-sponsored hackers compromising accounts way back in 2012.

– The most famous state-sponsored hack is likely the Stuxnet bot from 2010, which wrecked physical destruction on equipment that computers controlled at Iran’s nuclear power plant, stalling the country’s nuclear program.

Advertisement. Scroll to continue reading.

Also read:

10 Ominous State-Sponsored Hacker Groups

Nation-State Cyberthreats: Why They Hack

Image source: Flickr user Scott Schiller under CC BY 2.0

Advertisement. Scroll to continue reading.
Written By

MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.



While the market reality of popular crypto-assets like Bitcoin may undergo little change, the same can't be said for stablecoins.


Bringing transactions related to crypto-assets within the tax net could make matters less fuzzy.


Loopholes in FEMA and the decentralised nature of crypto-assets point to a need for effective regulations.


The need of the hour is for lawmakers to understand the systems that are amplifying harmful content.


For drone delivery to become a reality, a permissive regulatory regime is a prerequisite.

You May Also Like


Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...


135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...


Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...


By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to our daily newsletter
Your email address:*
Please enter all required fields Click to hide
Correct invalid entries Click to hide

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ