BEIRUT

Sci&Tech

Hackers post pilfered Yahoo! passwords

The Yahoo logo is seen at the Consumer Electronics Show (CES) in Las Vegas, Nevada, in this file picture taken January 7, 2008. (REUTERS/Rick Wilking/Files)

SAN FRANCISCO: Yahoo! on Thursday was digging into how hackers looted nearly a half million passwords and email addresses from one of its servers.

A hacker group calling itself D33DS posted online a massive trove of data it said were unencrypted in a file pilfered from the Sunnyvale, California-based Internet pioneer "as a wake-up call not as a threat."

Yahoo! confirmed that a file from its Contributor Network (formerly Associated Content) containing approximately 450,000 Yahoo! and other company users names and passwords was compromised on Wednesday.

"We apologize to all affected users," Yahoo! said in a prepared statement.

"We are taking immediate action by fixing the vulnerability that led to the disclosure of this data, changing the passwords of the affected Yahoo! users and notifying the companies whose users accounts may have been compromised."

Less than five percent of the Yahoo! account data stolen had valid passwords, the company contended.

Affected accounts were reportedly at an Internet telephone service called Yahoo! Voices, which is related to the company's instant messaging feature.

"The most alarming part to the entire story was the fact that the passwords were stored completely unencrypted and the full 400,000-plus usernames and passwords are now public," Internet security firm TrustedSec said in a blog post.

 

Recommended

Related Articles

Entities

Advertisement

Comments

Your feedback is important to us!

We invite all our readers to share with us their views and comments about this article.

Disclaimer: Comments submitted by third parties on this site are the sole responsibility of the individual(s) whose content is submitted. The Daily Star accepts no responsibility for the content of comment(s), including, without limitation, any error, omission or inaccuracy therein. Please note that your email address will NOT appear on the site.

Alert: If you are facing problems with posting comments, please note that you must verify your email with Disqus prior to posting a comment. follow this link to make sure your account meets the requirements. (http://bit.ly/vDisqus)

comments powered by Disqus

Advertisement

FOLLOW THIS ARTICLE

Interested in knowing more about this story?

Click here