Hackers gained access to Yahoo accounts through forged cookies

Yahoo had identified the some of the hackers as having the backing of a state. As a result 26 individuals had been notified. In a regulatory filing with the SEC, Yahoo has admitted that its senior management did not properly comprehend or fully investigate the incidents.

In a regulatory filing Yahoo has shed some more light on data breaches that have plagued its more than 1 billion account holders.

As per its information, hackers who had got access to Yahoo’s code were able to craft their own cookies thanks to which they were able to compromise 32 million accounts from 2015 to 2016.

As per its 10-K statement, Yahoo got in touch with law enforcement agencies and notified 26 individuals that state-sponsored hackers were able to compromise their accounts by exploiting its account management tools.

Although earlier in December Yahoo has publicly revealed the extent of the damage, however now it has admitted that in 2014 “it appears certain senior executives did not properly comprehend or investigate, and therefore failed to act sufficiently upon, the full extent of knowledge known internally by the Company’s information security team.”

As a result Yahoo CEO Marissa Mayer will not receive her cash bonus for 2016. Also general counsel Ronald S. Bell resigned. As a result of these disclosures, Verizon has cut $350 million from its offer for acquiring Yahoo.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s