IT Security Guru: Yahoo! hack – Industry reactions

September 23, 2016 — Yahoo! hack – Industry reactions

Ryan, VP at NuData, gives expert comments on the story of massive Yahoo! account takeover attack yesterday.

Yahoo has confirmed that more than 500 million account holders’ details have been compromised in a data breach. The breach occurred in late 2014, and was likely carried out by a state-sponsored actor, Yahoo said in a statement. Personal information compromised in the breach includes usernames, email addresses, telephone numbers, dates of birth and hashed passwords, as well as encrypted and unencrypted security questions and answers. Though there is no evidence to suggest the hackers responsible are still in its network, Yahoo has encouraged users to change their passwords and security questions and answers.
The Guru was inundated with thoughts from security experts, so we decided to publish them all!

Ryan Wilk, VP at NuData Security:

“Once again, more news of a big breach hits the wire. A blockbuster breach, with staggering size and scope which has actually been baking since 2014 when the original breach occurred and was reported on. Still, 500 million records lost will likely make this one of the biggest on record. Sadly, while that number may be what Yahoo is aware of today, we can probably expect this number to rise. With this attack of a half a billion user accounts, we are likely to see well over a billion accounts breached this year alone compared to about 800 million in 2015.

Clearly, hacks are getting bigger and more impactful. Like a snowball gaining speed and momentum hacks are gaining in scope, sophistication and impact. All while feeding a fraud engine that leads to identity theft, account fraud and a myriad of other crimes that can be stopped.

For the complete article, go here.