Company announces that massive breach occurred in 2014
Internet giant Yahoo announced today that hackers gained access to more than 500 million email accounts back in 2014.
The company stated that an internal investigation uncovered the hack, which it believes to have come from what it called "a state-sponsored actor." Data breached included names, email addresses, telephone numbers, dates of birth, passwords, and, in some cases, security questions and answers. Passwords compromised were hashed passwords, while hacked security questions and answers were either encrypted or unencrypted.
Yahoo also noted that no bank account information or payment card data were included in the breach. The company is still investigating the data breach -- which is likely the largest in history -- and stated that it is "working closely with law enforcement" on the matter.
An important message about Yahoo account security https://t.co/gu6qdp3KMW
— Yahoo Inc. (@YahooInc) September 22, 2016
Yahoo has aready begun notifying affected users and also put forth security recommendations for all account holders. Recommendations include:
-- Changing passwords and security questions and answers.
-- Reviewing accounts for suspicious activity.
-- Excercising extreme caution with any suspicious emails.
Additionally, the company now recommends that any user who has not changed his/her password since 2014 to do so as soon as possible.
Those with Yahoo accounts who are in need of further information can visit the Yahoo Security Issue FAQs page.