Yahoo reveals more breachiness to users victimized by forged cookies

Yahoo has sent out another round of notifications to users, warning some that their accounts may have been breached as recently as last year. The accounts were affected by a flaw in Yahoo’s mail service that allowed an attacker—most likely a “state actor,” according to Yahoo—to use a forged “cookie” created by software stolen from within Yahoo’s internal systems to gain access to user accounts without a password.Some accounts may have been accessed with forged cookies as recently as 2016.

Source: Yahoo reveals more breachiness to users victimized by forged cookies

Share

Leave a Reply