© 2024 Blaze Media LLC. All rights reserved.
Yahoo: Hackers stole personal information from 500 million user accounts
FILE - In this June 5, 2014, file photo, people walk in front of a Yahoo sign at the company's headquarters in Sunnyvale, Calif. Yahoo says the personal information of 500 million accounts have been stolen in a massive security breakdown that represents the latest setback for the beleaguered internet company. The breach disclosed on Thursday, Sept. 22, 2016, dates back to late 2014. Yahoo is blaming the hack on a “state-sponsored actor.” (AP Photo/Marcio Jose Sanchez, File)\n

Yahoo: Hackers stole personal information from 500 million user accounts

The stolen data includes users' names, email addresses, telephone numbers, birth dates, hashed passwords, and the security questions — and answers — used to verify an accountholder's identity.

SAN FRANCISCO (AP) — Yahoo said hackers stole personal information from 500 million of its user accounts, a massive security breakdown it attributed to a "state sponsored actor." The breach disclosed Thursday, the latest setback for the beleaguered internet company, dates back to late 2014.

FILE - In this June 5, 2014, file photo, people walk in front of a Yahoo sign at the company's headquarters in Sunnyvale, Calif. Yahoo says the personal information of 500 million accounts have been stolen in a massive security breakdown that represents the latest setback for the beleaguered internet company. The breach disclosed on Thursday, Sept. 22, 2016, dates back to late 2014. Yahoo is blaming the hack on a “state-sponsored actor.” (AP Photo/Marcio Jose Sanchez, File)

That's when high-tech thieves hacked into Yahoo's data centers, the company said. But Yahoo only recently discovered the break-in as part of an ongoing internal investigation.

The stolen data includes users' names, email addresses, telephone numbers, birth dates, hashed passwords, and the security questions — and answers — used to verify an account holder's identity.

Last month, the tech site Motherboard reported that a hacker who uses the name "Peace" boasted that he had account information belonging to 200 million Yahoo users and was trying to sell the data on the web.

Yahoo recommends that users change their passwords if they haven't done so since 2014. The Sunnyvale, California, company said its investigation so far hasn't found any evidence that information about users' bank accounts or credit and debit cards were swiped in the hacking attack. It said it has "no evidence" that the attacker is still in Yahoo's network.

News of the security lapse could cause some people to have second thoughts about relying on Yahoo's services, raising a prickly issue for the company as it tries to sell its digital operations to Verizon Communications for $4.8 billion.

That deal, announced two months ago, isn't supposed to close until early next year. That leaves Verizon with wiggle room to renegotiate the purchase price or even back out if it believes the security breach will harm Yahoo's business. That could happen if users shun Yahoo or file lawsuits because they're incensed by the theft of their personal information.

Verizon said it still doesn't know enough about the Yahoo break-in to assess the potential consequences. "We will evaluate as the investigation continues through the lens of overall Verizon interests, including consumers, customers, shareholders and related communities," the company said in a statement.

Want to leave a tip?

We answer to you. Help keep our content free of advertisers and big tech censorship by leaving a tip today.
Want to join the conversation?
Already a subscriber?