You should never do this," said Neuman. The hackers posted a full text document online containing the usernames and passwords and said the breach should be a "wakeup call" rather than a threat to Yahoo.
Full Story. Watch Now. Local News. Weather Traffic U. Station Info. The company, however, said fewer than 5 percent of the Yahoo accounts posted had valid passwords. We are fixing the vulnerability that led to the disclosure of this data, changing the passwords of the affected Yahoo users and notifying the companies whose users' accounts may have been compromised, the company said in an emailed statement, according to the Wall Street Journal.
The unencrypted user names and passwords were pulled from a database that stored them in plain text and without the added security of a hashing technique -- an otherwise common practice for any company that handles sensitive user information. The subdomain and vulnerable parameters have not been posted to avoid further damage, the hackers said in a release that accompanied the list, according to Computerworld.
Hackers posted online what they say is login information for more than , Yahoo users. The hack, which of course was conducted anonymously, was meant to be a warning, according to the Web page where the documents were dumped. Please do not take them lightly.
How to protect your password from hacks. The statement adds that the "subdomain and vulnerable parameters" that were used to hack the site were not posted "to avoid further damage.
The Web page where the data was dumped was offline for much of Thursday morning.
0コメント