Breach cyber

Yahoo! Inc.

Dec 1, 2014 1 min read
Yahoo! Inc.

The California Office of the Attorney General reported a data breach involving Yahoo! Inc. on September 22, 2016. A copy of user account information, potentially affecting at least 500 million accounts, was stolen in late 2014 by what Yahoo believes to be a state-sponsored actor. The stolen information may have included names, email addresses, telephone numbers, dates of birth, and hashed passwords, but did not include unprotected passwords, payment card data, or bank account information.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-64004

TPRM report: https://www.rankiteo.com/company/yahoo

"id": "yah012072925",
"linkid": "yahoo",
"type": "Breach",
"date": "12/2014",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': '500 million',
                        'industry': 'Technology',
                        'name': 'Yahoo! Inc.',
                        'type': 'Company'}],
 'attack_vector': 'State-sponsored actor',
 'data_breach': {'number_of_records_exposed': '500 million',
                 'personally_identifiable_information': ['names',
                                                         'email addresses',
                                                         'telephone numbers',
                                                         'dates of birth'],
                 'type_of_data_compromised': ['names',
                                              'email addresses',
                                              'telephone numbers',
                                              'dates of birth',
                                              'hashed passwords']},
 'date_detected': '2016-09-22',
 'date_publicly_disclosed': '2016-09-22',
 'description': 'A data breach involving Yahoo! Inc. was reported by the '
                'California Office of the Attorney General on September 22, '
                '2016. A copy of user account information, potentially '
                'affecting at least 500 million accounts, was stolen in late '
                '2014 by what Yahoo believes to be a state-sponsored actor. '
                'The stolen information may have included names, email '
                'addresses, telephone numbers, dates of birth, and hashed '
                'passwords, but did not include unprotected passwords, payment '
                'card data, or bank account information.',
 'impact': {'data_compromised': ['names',
                                 'email addresses',
                                 'telephone numbers',
                                 'dates of birth',
                                 'hashed passwords']},
 'references': [{'date_accessed': '2016-09-22',
                 'source': 'California Office of the Attorney General'}],
 'threat_actor': 'State-sponsored actor',
 'title': 'Yahoo! Inc. Data Breach',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.