Another Discovered Yahoo Data Breach (2013)

by Tech Mainstream Staff


December 15, 2016


Another Discovered Yahoo Data Breach (2013)


In November, Yahoo determined through law enforcement officials that an unauthorized third party stole data files which contained Yahoo user data. In an official Yahoo statement, the details are given: "Based on further analysis of this data by the forensic experts, we believe an unauthorized third party, in August 2013, stole data associated with more than one billion user accounts. We have not been able to identify the intrusion associated with this theft. We believe this incident is likely distinct from the incident we disclosed on September 22, 2016."

The compromised user data may have contained "names, email addresses, telephone numbers, dates of birth, hashed passwords (using MD5) and, in some cases, encrypted or unencrypted security questions and answers." It has also been determined that "clear text, payment card data, or bank account information" was not part of the data breach.

How did this happen? The intruder(s) learned to forge "cookies that could allow an intruder to access users’ accounts without a password. Based on the ongoing investigation, we [Yahoo] believe an unauthorized third party accessed our proprietary code to learn how to forge cookies." For individuals that have been affected by this data breach, Yahoo offers this advice, "We are notifying potentially affected users and have taken steps to secure their accounts, including requiring users to change their passwords." As for the cookie forgery issue, Yahoo remarks, "we invalidated the forged cookies and hardened our systems to secure them against similar attacks." For a complete analysis of the data breach and additional security tips visit Yahoo Security Notice December 14, 2016

 

TECH IN A SECOND     

  • 05-24-19 IBM AI and Cloud Technology Helps Agriculture Industry Improve the World's Food and Crop Supply
  • 05-24-19 The 3D-printed customisable food supplements
  • 05-24-19 Global Payments nearing $20 billion deal to buy Total System: source
  • 05-23-19 Musk's leaked email shows Tesla to make record deliveries in second quarter
  • 05-23-19 Self-driving startup Aurora to buy lidar company Blackmore
  • 05-22-19 Artificial Intelligence to Reach Human-Level Intelligence by 2040
  • 05-22-19 How Digital Can Save Brick-And-Mortar Retail with Customer Experience Objectives
  • 05-22-19 Bonobo AI Has Joined the Salesforce Family!
  • 05-22-19 Google Stored G Suite Passwords in Plaintext Since 2005
  • 05-22-19 Uber and Lyft to turn the wheels on car ownership: industry experts
  • 05-22-19 Roku Introduces New Analytics and Planning Tools for OTT Advertisers
  • 05-22-19 IBM, Cera Care to test self-driving car tech in elder homes
  • 05-21-19 Lenovo Unveils Preview of the World’s First Foldable PC in ThinkPad X1 Family
  • 05-21-19 Vestas takes aim at cheaper U.S. wind power with new turbine
  • 05-21-19 Apple expands keyboard repairs to newer models of MacBook
  • 05-21-19 Nokia CEO sees possible benefits from Huawei tensions
  • 05-21-19 Self-driving trucks begin mail delivery test for U.S. Postal Service
  • 05-20-19 The ‘Unprecedented Challenge’ of Cybersecurity in an Age of Burgeoning Threats
  • 05-20-19 Cisco named one of the best companies for flexibility—here’s why
  • 05-20-19 Slack expects to raise about $197 million in direct listing
  • 05-20-19 Chips are down: Huawei U.S. blacklisting knocks semiconductor stocks
  • 05-19-19 Exclusive: Google suspends some business with Huawei after Trump blacklist - source
  • 05-19-19 Sol-Ark 8K Inverter Efficiency Tops Tesla
  • 05-18-19 Hewlett Packard Enterprise to buy supercomputer maker Cray in $1.30 billion deal
  • 05-17-19 Amazon squares up to Uber with backing for UK food app Deliveroo
  • 05-17-19 Facebook forms Swiss fintech firm with payments focus
  • 05-17-19 LG to accelerate development of artificial intelligence with own AI chip
  • 05-17-19 Elowan: A plant-robot hybrid
  • 05-16-19 Q&A: How to co-create value in the API economy
  • 05-16-19 Elon Musk just revealed new details about Starlink, a plan to surround Earth with 12,000 high-speed internet satellites.
  • 05-16-19 SpaceX postpones Starlink satellite launch again, for 'about a week'
  • 05-16-19 Pinterest shares plummet on disappointing 2019 revenue forecast
  • 05-16-19 WhatsApp urges upgrade to thwart spyware attack
  • 05-15-19 Counter-Drone Technology to be Commercialized by Embry-Riddle and Drone Defense Systems LLC
  • 05-15-19 Symantec Named a Leader in Gartner Magic Quadrant for Managed Security Services, Worldwide
  • 05-15-19 SpaceX to launch first satellites for Musk's Starlink internet service

Read All News...


Upcoming Tech Events

May 20-23, 2019- DataWorks Summit 2019

May 22-24, 2019- Coveo Impact

May 23-24, 2019- Women in Tech Festival

June 3-5, 2019- Gartner Tech Growth & Innovation Conference 2019

June 10-11, 2019- Microsoft Business Applications Summit

June 17-19, 2019- Salesforce Connections 2019

July 15-17, 2019- MozCon

July 16-18, 2019- Marketing Artificial Intelligence Conference

September 9-11, 2019- Digital Transformation Connect

September 17-19, 2019- Network Virtualization & SDN Americas

September 25-27, 2019- Talent Connect 2019

October 8-11, 2019- Future in Review Conference

October 23-24, 2019- Android Dev Summit

November 4-8, 2019- Microsoft Ignite

November 5, 2019- Software Defined Operations

November 4-10, 2019- Cloud & DevOps Security Summit

November 19-22, 2019- Open Data Science Conference


Tech Definitions in the News

Augmented Reality is an enhanced version of reality where live direct or indirect views of physical real-world environments are augmented with superimposed computer-generated images over a user’s view of the real-world, thus enhancing one’s current perception of reality.

Source: https://www.realitytechnologies.com/ augmented-reality/

Chatbot is a piece of software that interacts with users in a conversational way.

Source: https://snatchbot.me/insight/250/ intelligent-chatbots


Deep Learning is a new area of Machine Learning research, which has been introduced with the objective of moving Machine Learning closer to one of its original goals: Artificial Intelligence.

Source: http://deeplearning.net/


DevOps is a set of software development practices that combines software development (Dev) and information technology operations (Ops) to shorten the systems development life cycle while delivering features, fixes, and updates frequently in close alignment with business objectives. Different disciplines collaborate, making quality everyone's job.

Source: https://en.wikipedia.org/wiki/DevOps


Hybrid Cloud is a computing environment that combines a public cloud and a private cloud by allowing data and applications to be shared between them.

Source: https://azure.microsoft.com/en-us/overview/what-is-hybrid-cloud-computing/


Kubernetes (k8s) is an open-source system for automating deployment, scaling, and management of containerized applications.

Source: https://kubernetes.io/blog/



Did You Know?

Duck Duck Go Search Engine has six different themes to choose from for its search interface.


Tech Gallery

LG SIGNATURE OLED TV R9 - 4K HDR Smart TV
Image Credit: LG