Four Years Later, Yahoo Still Doesn’t Know How Russia Hacked 3 billion Accounts

DooKey

[H]F Junkie
Joined
Apr 25, 2001
Messages
13,500
On Wednesday, in a security hearing that called both Equifax and Yahoo’s past and present executives to Washington D.C., we’re learning a bit more about what Yahoo didn’t know about the biggest hack in history. So let me see if I can get this right....Yahoo had 500 million, I mean 3 Billion accounts hacked, and they don't have the slightest clue how it was done. Something isn't smelling very good in Denmark. Inside help for the Russians if you ask me.

Yahoo did not notice that it had been compromised in 2013 and 2014 until third party evidence of the hack was presented to the company by law enforcement in 2016. Yahoo then began working with the Department of Justice and the FBI, and the agencies concluded that the company was a victim of a massive Russian state-sponsored attack for which it was in no way prepared.
 
They know. The "how" is so embarrassing they don't want to publicly disclose it.

I'm inclined to both agree and disagree with you.

I suspect the could have known, but the company was in such turmoil from shitty management for so long that nobody was watching at the time, and anything to work with was long gone by the time they got around to trying to figure it out.

I don't think they know, and they know why they don't know, but the why is embarrassing, so they will pretend the hack was unprecedentedly technically advanced.
 
Well they aren't far behind since we're coming up on year 2 of not knowing how Russia put a tv show host and real estate investor in the white house.
 
LEAVE RUSSIA ALONE!

Actually, it's the easiest thing in the world to infiltrate a network from the inside. All you need is a uniform that makes you look professional and staff at the target that are too busy to pay close attention to you.
 
LEAVE RUSSIA ALONE!

Actually, it's the easiest thing in the world to infiltrate a network from the inside. All you need is a uniform that makes you look professional and staff at the target that are too busy to pay close attention to you.
Uniform? You don't even need that in most places. When I was freelancing computer and network support, I'd go into these business, and only the Manager and maybe a couple of other people knew that I was there to work on the computers. No uniform or identifying patches - and no one ever questioned why this guy was wandering about the employee only areas!
 
It is easy, Russia has a lot of spies with deep pockets. They just needed to pay a couple people in the right places, and blamo, everyone's information.
 
I suspect they could have known, but the company was in such turmoil from shitty management for so long that nobody was watching at the time, and anything to work with was long gone by the time they got around to trying to figure it out.

This is my assumption as well.
 
Back
Top