Yahoo has suffered one more hack.
The firm disclosed today that it has discovered a breach of a lot more than one particular billion user accounts that occurred in August 2013. The breach is separate and distinct from the theft of information from 500 million accounts that Yahoo reported this September.
Troublingly, Yahoo’s chief details safety officer Bob Lord says that the company hasn’t been in a position to figure out how the data from the one particular billion accounts was stolen. “We have not been in a position to determine the intrusion connected with this theft,” Lord wrote in a post announcing the hack.
“The stolen user account information could have included names, e-mail addresses, telephone numbers, dates of birth, hashed passwords (employing MD5) and, in some situations, encrypted or unencrypted safety inquiries and answers,” Lord added.
Yahoo was alerted to the massive breach by law enforcement and has examined the information with the support of outside forensic professionals. The information does not appear to include payment details or plaintext passwords, but it’s still poor news for Yahoo account holders. The hashing algorithm MD5 is no longer considered secure and MD5 hashes can effortlessly be looked up on-line to find out the passwords they hide.
Yahoo says it is notifying the account holders impacted in the breach.
Featured Image: Bryce Durbin/TechCrunch