Yahoo

Pierluigi Paganini October 05, 2016
Reuters – Yahoo allowed US government to secretly scanning customer emails

Yahoo may have allowed US government to search user emails by using a secret software program that scanned hundreds of millions of Mail accounts. Yahoo is still in trouble, this time the company  has reportedly scanned all of its users’ incoming emails with a secret software program that is designed to gather information for the US Government […]

Pierluigi Paganini October 01, 2016
Yahoo Data Breach may have affected over 1 Billion users

According to a former Yahoo executive the number of affected user accounts in the Yahoo data breach may be between 1 Billion and 3 Billion. This summer 200 million Yahoo user accounts were offered for sale in a black market on the dark web. The company promptly started its investigation and last week confirmed the […]

Pierluigi Paganini September 22, 2016
Yahoo Data Breach, the company confirms the incident that exposed 500M accounts

The announcement about the Yahoo data breach is online, the company confirmed that hackers managed to access data from at least 500 million user accounts. Today I wrote about the imminent announce of the Yahoo data breach related to an incident that resulted in the leakage of 200 million Yahoo account credentials this summer. The company has finally […]

Pierluigi Paganini September 22, 2016
Yahoo is going to confirm the data breach that exposed 200 Million Yahoo accounts

It’s a question of hours, security experts believe Yahoo will confirm the massive data breach that exposed at least 200 Million Yahoo accounts. Yahoo is ready to confirm a massive data breach that affected its service that has exposed several hundred million user accounts. “Yahoo is poised to confirm a massive data breach of its […]

Pierluigi Paganini August 02, 2016
Peace is advertising 200 Million alleged Yahoo accounts on Dark Web

The notorious hacker Peace is advertising 200 Million alleged Yahoo accounts on Dark Web, and the company is aware of the sale. Do you remember the notorious hacker Peace? He is the hacker that offered for sale the dumps of LinkedIn and MySpace, and now he has once again a surprise for the security experts. Peace is advertising […]

Pierluigi Paganini April 06, 2015
Another phishing scam is targeting Yahoo users

A new phishing scam is targeting Yahoo users worldwide, this campaign could be ineffective if we share awareness about bad actors’ TTPs. A new large-scale scam is trying to deceive Yahoo users that are receiving a phishing email that asks for “Yahoo Account Confirmation.” The phishing email claims to be sent by Yahoo, it requests […]

Pierluigi Paganini March 17, 2015
Yahoo launches its on-demand password feature

Yahoo announced its new on-demand password feature that lets users into login in their account with a code sent to their mobile phone. Yahoo has announced a new Password-Free login feature to let users access their account without the need for a password. When users will sign in his account, an on-demand password is sent to a […]

Pierluigi Paganini December 15, 2014
LogDog Internet Security Survey – November 2014

Mobile developers behind the Logdog app have conducted a rapid survey to analyze the trend in the hacking of accounts for the principal web services. A few weeks ago I was contacted by LogDog, a company that has developed is free protection app from hacking attacks and identity theft, the developer asked me to try the […]

Pierluigi Paganini October 27, 2014
RRVS, Facebook and Yahoo work to prevent identity theft

Facebook and Yahoo have designed an SMTP extension dubbed RRVS, Require-Recipient-Valid-Since, to prevent illegal use of emails with a new  ownership. Last year Yahoo announced the decision to reset any account that has not been used for 12 months, making them available to other users. The decision has raised several doubts for security and privacy issues, […]

Pierluigi Paganini October 09, 2014
Yahoo Contributors Network affected by Blind & Time Based SQL Injection flaws

Yahoo! Contributors Network was affected by a serious Time based Blind SQL Injection vulnerability which allows the theft of sensitive data. The Yahoo! Contributors Network allows writers to submit articles, videos, it also allows contributors to receive assignments from Yahoo related various domains like Sports and Finance. The security researcher Behrouz Sadeghipour reported to that The Yahoo! Contributors Network (contributor.yahoo.com) is […]