Yahoo: the cyber-attack of 2013 affected all 3 billion accounts
The headquarters of Yahoo! in Sunnyvale, California on July 17, 2017
Yahoo! announced on Tuesday that the largest massive cyber attack in the history of which it was the victim in 2013 affected all 3 billion user accounts and not only 1 billion as originally announced.
“Yahoo sends email notifications to other affected user accounts,” the group said in a statement, owned by US telecoms operator Verizon.
It ensures that hackers have not stolen passwords, banking data, or information related to the means of payment to which the account owners have recourse.
Headquarters for North Virginia of US operator Verizon in Ashburn, Virginia, January 2, 2015
The deal almost challenged the takeover of Yahoo’s core business by telecom giant Verizon, which finally got to pay less: $ 4.48 billion instead of $ 4.83 billion.
These are surveys conducted by independent experts after the integration of Yahoo! in Verizon who discovered that the magnitude of the cyber attack was much greater than what had been revealed so far, says Yahoo renamed since Oath.
“The company continues to work closely with law enforcement,” she said, ensuring “all necessary measures” to ensure the safety of its users.
Hillary Clinton, former US presidential candidate, June 1, 2017 in New York
The announcements made Tuesday take place in a context of continuing controversy in the United States about Moscow’s interference in the American election last year in order to favor Donald Trump, notably via a piracy of the Democratic party of Hillary Clinton. US intelligence services also accuse the Russians of computer piracy in the United States.
– Multiplication of attacks –
Yahoo! had revealed on December 14, 2016 to have been the victim of a huge piracy dating back to August 2013. This cyber attack originally involved 1 billion pirated user accounts, making it the largest in history.
At the time, the group already insisted that piracy did not cover bank card numbers or social security numbers, which made the experts say that the purpose was not financial.
But he found himself under fire from critics because these revelations occurred after a previous attack, initiated in 2014, having affected 500 million of his accounts and led to the stealing of information from users.
For this last massive attack, the group had questioned pirates “probably linked to a state” without further details.
In March, the US authorities accused Russian intelligence services FSB of being responsible.
The US Department of Justice (DoJ) had carried out four indictments, including two FSB agents, heir to the KGB – Dmitri Dokuchayev and Igor Sushhin.
They were accused of “protecting, directing, facilitating and paying criminal hijackers to collect information through computer intrusion in the United States and elsewhere”.
Two hackers who had worked for the Russian spies were also charged: Russian Alexei Belan (“Magg”), who had already been on the list of cyberpirates most wanted by the United States since 2013, as well as Canada-Kazakh Karim Baratov , arrested a day earlier in Canada.
Computer attacks have increased in recent months against American companies, which raises fears that the stolen data could be used for espionage purposes.
The last one dates back to September 7th. On that day, Equifax, one of the largest credit rating agencies in the United States whose role is to collect and analyze the personal data of consumers seeking credit, announced that hackers had obtained the names, social security numbers, dates of birth and, in some cases, driver’s license numbers, which is the same information that can be used for identity theft.
According to the group, the hackers were able to access the databases between 13 May and 30 July. Since the revelation of piracy, a series of investigations and complaints have been launched.