Yahoo had identified the some of the hackers as having the backing of a state. As a result 26 individuals had been notified. In a regulatory filing with the SEC, Yahoo has admitted that its senior management did not properly comprehend or fully investigate the incidents.
In a regulatory filing Yahoo has shed some more light on data breaches that have plagued its more than 1 billion account holders.
As per its information, hackers who had got access to Yahoo’s code were able to craft their own cookies thanks to which they were able to compromise 32 million accounts from 2015 to 2016.
As per its 10-K statement, Yahoo got in touch with law enforcement agencies and notified 26 individuals that state-sponsored hackers were able to compromise their accounts by exploiting its account management tools.
Although earlier in December Yahoo has publicly revealed the extent of the damage, however now it has admitted that in 2014 “it appears certain senior executives did not properly comprehend or investigate, and therefore failed to act sufficiently upon, the full extent of knowledge known internally by the Company’s information security team.”
As a result Yahoo CEO Marissa Mayer will not receive her cash bonus for 2016. Also general counsel Ronald S. Bell resigned. As a result of these disclosures, Verizon has cut $350 million from its offer for acquiring Yahoo.