Yahoo: One Billion More Accounts Hacked — Krebs on Security

So Yahoo lost another billion passwords…in 2013…that were (maybe) MD5 encrypted. Does md5 even count as encryption anymore? The scarier part of this story is also the part that will get overlooked – someone has figured out how to successfully spoof Yahoo sessions for some accounts. That means they don’t need your password to read your email.

“Just months after disclosing a breach that compromised the passwords for a half billion of its users, Yahoo now says a separate incident has jeopardized data from at least a billion more user accounts. The company also warned attackers have figured out a way to log into targeted Yahoo accounts witho…”
from Facebook

Yahoo: One Billion More Accounts Hacked

~ by Nick on December 15, 2016.