Yahoo Customers’ Sensitive Details LeakedAdded: Monday, July 16th, 2012
Category: Recent Headlines Involving File Sharing > Current Events
Tags:ET, p2p, Torrent, Piracy, Peer To Peer, Network, Hackers, Internet, BitTorrent, Google, utorrent, bitcomet, extratorrent, 2010, www.extrattorrent.com
The intruders have recently published the details of over 450,000 Yahoo customers in what they called a wakeup call for the company. The press reports confirm that Yahoo for some reason chose to store the details of hundreds of thousands of login credentials in plain text.
According to the intruders, they used a union-based SQL injection technique in order to get through the Yahoo subdomain. Moreover, they left a comment at the bottom of the information that the parties who carry responsibility for managing the security of this subdomain should take this as a “wake-up call” rather than a threat. If this isn’t a threat, then what is?..
The hackers claimed that there have been a lot of security holes exploited in webservers that belong to Yahoo! Inc., which have caused far greater damage than the disclosure in question. They strongly recommended not to take them lightly, explaining that they didn’t publish subdomain and vulnerable parameters in order to avoid further damage.
The targeted subdomain belonged to Yahoo Voices, which was previously known as Associated Content. It might have been that it was information sitting around on an ancient Associated Content server that wasn’t upgraded when the company got acquired by Yahoo.
Meanwhile, password security is considered a “bit of a cause” right now, if you recall the high-profile password thefts at LinkedIn, eHarmony, and Last.fm. For instance, a couple days ago, Formspring announced that it had to disable the passwords of its entire user base upon discovery of 420,000 hashed passwords appearing to come from the question-and-answer website being posted to a security forum.
July 16th,2012Posted by:
Monday, July 16th, 2012
|nice job on sh1te browser.|
|since when was yahoo a browser?|
|lols a yahoo browser , id love that...NOT xD|
|posted by (2012-07-18 14:47:53)|
|First of all this media report is misleading. A lot of the "hacked" accounts had common passwords. This group didn't do anything spectacular such as infiltrating Yahoos servers and downloading their user database. They used an account hack program that attempts different password combinations. I have similar software for MSN and Yahoo. A noob can figure out how to use it. Not impressed at all. These idiots just brought unnecessary attention to security vulnerabilities which caused Yahoo to crack down hard over the last 6 weeks. Yahoo has been locking, rating and permanently disabling large numbers of accounts in response to this.|
|posted by (2012-07-19 02:16:27)|
|I'm thinking it should read Yahoo Customers leaked sensitive information. I've been receiving phishing e-mails for the last 3 months concerning my Yahoo account and all the updating that needs to be done. When I sent it to [email protected], they gave me the run around about where to send it. so I just deleted it and didn't bother with the next 30 I got in the next 8 weeks. I'm not so sure it was Yahoo's security as it was people's stupidity.||
Most Popular Stories