Yahoo Expected To Confirm Details of Massive Data Breach

With just months to go before it's set to be acquired by Verizon for $4.83 billion, Yahoo is reportedly preparing to confirm that a massive data breach four years ago affected some 200 million Yahoo users.

First reported by Motherboard in early August, the breach came to light after the Yahoo credentials were listed for sale on the dark web. Offered by a hacker using the name "Peace" for the price of three bitcoins (about $1,800), the user data appeared to have been taken in a breach that occurred in 2012.

"We are aware of a claim," a Yahoo spokesperson told us on August 2. "We are committed to protecting the security of our users' information and we take any such claim very seriously."

'Lots of Signals Lining Up'

In a report published today, tech site re/code cited "several sources close to the situation" who said Yahoo would soon confirm the 2012 massive breach of user accounts. Noting that legal action and government investigations were likely, those sources told re/code the breach was widespread and serious. "It's as bad as that," according to one source. "Worse, really."

Yahoo did not respond to our request for comment today. However, in an email a Verizon spokesperson told us, "Verizon does not have a comment."

Security developer Troy Hunt was among those closely watching the Yahoo developments today. Hunt, who runs the breach-related Web site, Have I been pwned?, noted in several tweets today that he and others had received email or sign-on notifications from Yahoo recommending a change in passwords to secure their accounts.

"More Yahoo breach indicators (this could happen any time, but a lot of signals lining up at once right now)," Hunt said on Twitter earlier this morning.

Verizon Closing Set for Early 2017

Announced in July, the sale of Yahoo would...

Comments are closed.