Another Huge Yahoo Breach Affected One Billion Accounts

Another Huge Yahoo Breach Affected One Billion Accounts

December 15, 2016         Written By Bill Hardekopf

Yesterday, Yahoo announced yet another massive data breach, one in which the hacker stole one billion Yahoo email accounts in August 2013.

The stolen data included names, email addresses, birth dates, telephone numbers and password hashes, which are a string of characters that help websites verify whether or not a password is correct. In some cases, the security questions were also stolen. If the hacker publishes these, it would be easier for cybercriminals to gain access to other user accounts that utilize the same security questions and answers.

In September, Yahoo announced the account information of 500 million users had been stolen. At that time, experts believed it was the largest known data breach in history, but that previous hack has been overshadowed by Yahoo’s most recent revelation. The company has said the latest data breach is different than the previously announced breach.

Yahoo discovered this latest massive breach when law enforcement officials shared stolen user data they had uncovered. The company believes the “state-sponsored actor” they are blaming for the 500 million-account breach was involved in this attack as well.

To steal the data, Yahoo said the attacker forged cookies, which are small packages of data that track users and inform browsers which accounts a user is signed into. The cybercriminals did this by accessing and dissecting Yahoo’s “proprietary code.” Yahoo said they have since invalidated those fake cookies, and are notifying affected users.

Yahoo reports having more than a billion users. Since users can create multiple accounts, it is unclear how many individual users have been affected by these two breaches.

This is the second massive breach Yahoo has revealed since reaching a deal with Verizon earlier this year.

The information contained within this article was accurate as of December 15, 2016. For up-to-date
information on any of the terms, cards or offers mentioned above, visit the issuer's website.


About Bill Hardekopf

Bill Hardekopf is the CEO of and covers the credit card industry from all perspectives. Bill has been involved with personal finance for over 15 years. He is a frequent contributor to Forbes, The Street and The Christian Science Monitor.
View all posts by Bill Hardekopf
Featured Low Interest Card
Top Features : 1.25X miles on every purchase; no annual fee; bonus of 20,000 miles once $1,000 is spent in first 3 months
Featured No Annual Fee Card
Top Features : Earn cash back twice. 1% when you buy plus 1% as you pay; 0% APR for 18 months on balance transfers
Featured Bad Credit Card
Top Features : No Annual Fee; Cash Back match at the end of your first year; Social Security Alerts
Featured Fair Credit Card
Top Features : No annual fee; access to higher credit line after making first 5 monthly payments on time
Featured Limited/No Credit
Top Features : No annual fee; reports to major credit bureaus; access to higher credit line after making first 5 monthly payments on time
Featured Cash Back Card
Top Features : No Annual Fee, Bonus Offer, Cash Back