Make us your home page
Instagram

Yahoo says hackers stole data on 500 million users in 2014

Yahoo has confirmed that at least 500 million user account credentials were stolen from the company’s network in late 2014.

Getty Images (2014)

Yahoo has confirmed that at least 500 million user account credentials were stolen from the company’s network in late 2014.

SAN FRANCISCO — Yahoo announced Thursday that the account information for at least 500 million users was stolen by hackers two years ago, in the biggest known intrusion of one company's computer network.

In a statement, Yahoo said user information — including names, email addresses, telephone numbers, birth dates, passwords and, in some cases, security questions — was compromised in 2014 by what it believed was a "state-sponsored actor." It did not name the country involved.

The company said that it is working with law enforcement officials and that it is invalidating existing security questions and asking users to change their passwords. Yahoo also encouraged people to review other online accounts for suspicious activity, change passwords and security questions on those accounts, and watch out for suspicious emails.

Verizon Communications is moving forward with a $4.8 billion acquisition of Yahoo, which was announced in July. It is unclear what effect, if any, the breach will have on Yahoo's sale price.

Yahoo said it learned of the data breach this summer after hackers posted to underground forums and online marketplaces what they claimed was stolen Yahoo data. A Yahoo team investigated the data and was unable to confirm that the stolen data had originated from a breach at Yahoo. But in investigating the security of its systems, the company discovered that there was another breach, by what it believes was a state-sponsored actor, that dated back to 2014.

Security experts say the breach could have major consequences.

"The stolen Yahoo data is critical because it not only leads to a single system but to users' connections to their banks, social media profiles, other financial services and users' friends and family," said Alex Holden, the founder of Hold Security, which has been tracking the flow of stolen Yahoo credentials on the underground Web.

Two years is an unusually long time to identify a hacking incident. According to the Ponemon Institute, which tracks data breaches, the average time it takes organizations to identify such an attack is 191 days, and the average time to contain a breach is 58 days after discovery. Security experts say the breach could bring about class-action lawsuits, in addition to other costs.

Yahoo says hackers stole data on 500 million users in 2014 09/22/16 [Last modified: Thursday, September 22, 2016 9:01pm]
Photo reprints | Article reprints

Copyright: For copyright information, please check with the distributor of this item, New York Times.
    

Join the discussion: Click to view comments, add yours

Loading...
  1. Former Sen. Greg Evers, advocate for law enforcement, dead at 62.

    State Roundup

    TALLAHASSEE — Former State Sen. Greg Evers, the Baker Florida strawberry farmer and veteran politician, was killed in a single car crash hear his home in Okaloosa County. The Florida Highway Patrol confirmed the death late Tuesday, but deferred any further information pending an investigation. He was 62.

    Former Florida Senator Greg Evers, R- Milton, was a passionate advocate for law enforcement and corrections officers. He was found dead Tuesday afternoon in a car crash. He was 62. [SCOTT KEELER | Tampa Bay Times]
  2. Foundation Partners buys Anderson-McQueen Funeral Home

    Business

    ST. PETERSBURG — Anderson-McQueen Funeral Home, the Tampa Bay area's largest family-owned funeral company, has been sold.

    Anderson-McQueen Funeral Home, the Tampa Bay area's largest family-owned funeral company, has been sold.
[CHRIS URSO   |   Times]
  3. Water Street Tampa unveils video showing downtown's transformation

    Business

    TAMPA — Water Street Tampa, the sweeping, 50-plus acre redevelopment project in Tampa's urban core, has unveiled new images and video of what the downtown district will look like upon completion.

    Strategic Property Partners released a conceptual image of what the Tampa skyline will look like once its redevelopment of 50-plus acres of downtown will look like. [Photo courtesy of  of SPP]
  4. Florida ranks high for workplace equality between men and women

    Working Life

    When it comes to the workplace, Florida ranks fifth in terms of gender equality, a WalletHub study released Tuesday found.

    Florida ranks high in terms of equality between men and women in the workplace. Pictured is Sandra Murman, county commissioner in 2015, talking about the differences in pay between men and women. | [Times file photo]
  5. Treasury secretary's wife boasts of travel on government plane, touts high fashion

    National

    U.S. Treasury Secretary Steven Mnuchin's wife, Louise Linton, boasted of flying on a government plane with her husband to Kentucky on Monday and then named the numerous fashion brands she wore on the trip in an unusual social media post that only became more bizarre minutes later.

    Steven Mnuchin and his then- financee Louise Linton watch as President Donald Trump speaks during Mnuchin's swearing-in ceremony as  treasury secretary in the Oval Office of the White House on Feb. 13. [Mandel Ngan | AFP via Getty Images]