Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Yahoo sends new warning to customers about data breach


  • Please log in to reply
2 replies to this topic

#1 JohnC_21

JohnC_21

  • Members
  • 24,449 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:14 AM

Posted 15 February 2017 - 01:56 PM

Yahoo is warning users of potentially malicious activity on their accounts between 2015 and 2016. It's the latest development in the internet company's investigation of a mega-breach that exposed 1 billion users' data several years ago.

It's not clear how many users were affected by the malicious activity, which involved the use of forged cookies — strings of data which can be used to allow people to access online accounts without re-entering their passwords.

Yahoo said in a statement issued Wednesday that its investigation "has identified user accounts for which we believe forged cookies were taken or used. Yahoo is in the process of notifying all potentially affected account holders."

 

Article



BC AdBot (Login to Remove)

 


#2 JohnnyJammer

JohnnyJammer

  • Members
  • 1,117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:QLD Australia
  • Local time:12:14 AM

Posted 15 February 2017 - 04:42 PM

LOL, this has been common knowledge for yahoos Y and T cookies for years, since at least 2007.

My god they are slow to respond are they not!

 

All you ever needed was the Y and T cookie to perform a login on their YMSG network and on the web login, that was exactly the same.

At one point even sending a login request with Y=0&T=0&V=0 would give you anyone login cookies LOL, how stupid is that?


Edited by JohnnyJammer, 15 February 2017 - 04:43 PM.


#3 JohnC_21

JohnC_21
  • Topic Starter

  • Members
  • 24,449 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:14 AM

Posted 15 February 2017 - 05:16 PM

Still cannot understand Verizon purchasing Yahoo. Maybe Verizon will clean up Yahoo's act.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users