BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Yahoo! Voice Website Breached 400, 000+ Compromised

From: Jake Kouns <jkouns () opensecurityfoundation org>
Date: Thu, 12 Jul 2012 01:07:32 -0400
https://www.trustedsec.com/july-2012/yahoo-voice-website-breached-400000-compromised/

Few details are known at this point however, a recent post over
400,000 plus accounts that have clear text passwords were posted
online. The passwords contained a wide variety of email addresses
including those from yahoo.com, gmail.com, aol.com, and much more. The
affected website was only named as a subdomain of yahoo.com however
digging through and searching for the hostname, the attacker forgot to
remove the hostname “dbb1.ac.bf1.yahoo.com” (credit to Mubix for the
hostname find). Looking through a variety of sources, it appears that
the compromised server was likely “Yahoo! Voice” which was formally
known as Associated Content (credit to Adam Caudill for the linkage).

The most alarming part to the entire story was the fact that the
passwords were stored completely unencrypted and the full 400,000+
usernames and passwords are now public. The method for the compromise
was apparently a SQL Injection attack to extract the sensitive
information from the database.

Below is a small snippet of what the passwords looked like from the
leaked document (email addresses redacted):

If you are concerned about your password and for a full list of all of
the usernames and passwords compromised; head over to the below link.
Note that the filesize is large and will take quite a long time to
load.

https://d33ds.co/archive/yahoo-disclosure.txt

There has been no official confirmation from Yahoo or any other
sources as of yet.
_______________________________________________
Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.
Previous By Date Next
Previous By Thread Next

Current thread: