Digital Identity Blog

Thought leadership for cybersecurity, fraud and digital channel professionals

Yahooooooops! 450,000 Yahoo Voices Passwords Hacked.

Posted
ThreatMetrix
By ThreatMetrix
ThreatMetrix®, The Digital Identity Company®, is the market-leading cloud solution for authenticating digital personas and transactions on the Internet. Verifying more than 20 billion annual transactions supporting 30,000 websites and 4,000 customers globally through the ThreatMetrix Digital Identity Network®, ThreatMetrix secures businesses and end users against account takeover, payment fraud and fraudulent account registrations resulting from malware and data breaches.
Follow ThreatMetrix ThreatMetrix's Most Recent Posts:

Yahoo Voices, a division of Yahoo that focuses on online publishing, used to be known as Associated Content. Now, Yahoo Voices is known as the latest site to be breached by hackers who only did it for the good of the people whose information they compromised.

Somebody called D33Ds Company posted a list titled “Owned and Exposed” with email addresses and passwords for Yahoo Voices’ 450,000 users.

According to mashable.com the hackers said they posted the information only for the most humane and benevolent reasons.

“We hope that the parties responsible for managing the security of this subdomain will take this as a wake-up call, and not as a threat. There have been many security holes exploited in Web servers belonging to Yahoo! Inc. that have caused far greater damage than our disclosure.

“Please do not take them lightly. The subdomain and vulnerable parameters have not been posted to avoid further damage.”

The hackers’ message included a quote from Jean Vanier, whom Wikipedia describes as a Canadian Catholic philosopher, humanitarian and the founder of L’Arche, an international federation of group homes for people with developmental disabilities and those who assist them. The quote: “Growth begins when we begin to accept our own weakness.”

MSNBC reported that Yahoo said the vulnerability was fixed. Additionally, Yahoo advised users who joined Associated Content before May 2010 to use their Yahoo email addresses to log into their Yahoo accounts, where they would be prompted to answer a series of authentication questions to change and validate their credentials.

ThreatMetrix
By ThreatMetrix Posted