Leave a comment

Yahoo confirms that it got hacked, but by who?

Yahoo confirms that it got hacked, but by who?
Ken Wolter / Shutterstock.com

If you haven't seen my coverage of the supposed hack of a reported data breach at Yahoo Games, you can click here to check it out.

Yahoo released more detail about the hack, and here are facts straight from the horse's mouth:

  • Yahoo Games was not affected by Shellshock
  • No data was stolen
  • A few "isolated" servers were breached which didn't leak valuable user information
  • The hack came from Romanian IP addresses
  • Yahoo was breached when hackers exploited a vulnerable process on the affected servers

People still have their doubts, though.

Johnathan Hall, president and senior engineer at Future South Technologies, thinks that Yahoo should publish their server logs publicly. He isn't sure that the company wasn't breached by a Shellshock vulnerability.

Hall had this to say about the breach on his blog:

This breach is very serious, and jeopardizes every consumer that uses Yahoo! in any manner, from shopping to email, and even game playing.

Why does Hall think that Yahoo may have been breached by Shellshock? To avoid the embarrassment of being breached by an easy-to-avoid exploit that can be fixed by updating your server.

Either way, your data is safe according to Yahoo. That's good to hear.

Want more security updates?

Next Story
Source: Tech Times
View Comments ()
We just discovered ice on the last planet you'd expect
Previous Happening Now

We just discovered ice on the last planet you'd expect

Justice Department takes down Russian cybercrime kingpin
Next Happening Now

Justice Department takes down Russian cybercrime kingpin