Yahoo Hacked… Again -- Security Today

Yahoo Hacked... Again

Dec 15, 2016

Yahoo said on Wednesday it had discovered another major cyber attack, saying data from more than 1 billion user accounts was compromised in August 2013, making it the largest breach in history.

The number of affected accounts was double the number implicated in a 2014 breach that the internet company disclosed in September. The Yahoo blamed that breach on hackers working on behalf of the government.

“An unauthorized party” broke into accounts, Yahoo said in a statement posted on the website. The company believes the two hacks are connected and that the breaches are “state-sponsored.”

Yahoo’s chief information security officer, Bob Lord, said the hackers used “forged cookies,” or bits of code that stay in the user’s browser cache so that a website doesn’t require a login every time you visit it. The cookies “could allow an intruder to access users’ accounts without a password.” The breach may be related to theft of Yahoo’s proprietary code, Lord added.

Yahoo had been investigating this hack since November and said the stolen user account information may have included names, emails addresses, telephone numbers, dates of birth, hashed passwords and, in some cases, encrypted or unencrypted security questions and answers.

Eagle Eye Networks Releases 2025 Trends in Video Surveillance Report
11/20/2024
Genetec Expands Access Control Market Share
11/19/2024
AMAG Technology Welcomes Chris Meiter as Vice President Global Business Development Video Solutions
11/18/2024
Napco Access Pro Launches New MVP Access App
11/18/2024
Evolon and UCC Partner to Deliver Proactive Video Monitoring Solutions
11/14/2024
ASIS International, International Protective Security Board Sign Memorandum of Understanding
11/14/2024
i-PRO Launches High Zoom Bullet Camera
11/14/2024
TSA Announces Proposed Rule Requiring Establishment of Pipeline, Railroad Cyber Risk Management Programs
11/12/2024

Featured

Gaining a Competitive Edge

Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now
- Artificial Intelligence
6 Ways Security Awareness Training Empowers Human Risk Management

Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now
- Cybersecurity
The Stage is Set

The security industry spans the entire globe, with manufacturers, developers and suppliers on every continent (well, almost—sorry, Antarctica). That means when regulations pop up in one area, they often have a ripple effect that impacts the entire supply chain. Recent data privacy regulations like GDPR in Europe and CPRA in California made waves when they first went into effect, forcing businesses to change the way they approach data collection and storage to continue operating in those markets. Even highly specific regulations like the U.S.’s National Defense Authorization Act (NDAA) can have international reverberations – and this growing volume of legislation has continued to affect global supply chains in a variety of different ways. Read Now
- Artificial Intelligence
Access Control Technology

As we move swiftly toward the end of 2024, the security industry is looking at the trends in play, what might be on the horizon, and how they will impact business opportunities and projections. Read Now
- Access Control

Webinars

Hanwha Vision (formerly Hanwha Techwin)

Getting Control of your Access
Eagle Eye Networks Inc, Salient Systems

Insights into the Ever Changing World of Security for 2025
BriefCam

Maximizing Your Investment: The ROI of Video Analytics

Whitepapers

BriefCam

The ROI of Video Analytics
911Cellular

A Buyer's Guide to Panic Button Systems
Allegion

The Current State of School Security

New Products

EasyGate SPT SPD

Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles. 3
Mobile Safe Shield

SafeWood Designs, Inc., a manufacturer of patented bullet resistant products, is excited to announce the launch of the Mobile Safe Shield. The Mobile Safe Shield is a moveable bullet resistant shield that provides protection in the event of an assailant and supplies cover in the event of an active shooter. With a heavy-duty steel frame, quality castor wheels, and bullet resistant core, the Mobile Safe Shield is a perfect addition to any guard station, security desks, courthouses, police stations, schools, office spaces and more. The Mobile Safe Shield is incredibly customizable. Bullet resistant materials are available in UL 752 Levels 1 through 8 and include glass, white board, tack board, veneer, and plastic laminate. Flexibility in bullet resistant materials allows for the Mobile Safe Shield to blend more with current interior décor for a seamless design aesthetic. Optional custom paint colors are also available for the steel frame. 3
Connect ONE®

Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3