Credit Mike Blake/Reuters
SAN FRANCISCO â Yahoo announced Thursday that the account information of least 500 million users was stolen by hackers two years ago.
In a statement, Yahoo said user information â including names, email addresses, telephone numbers, birth dates, passwords, and in some cases security questions â was compromised in 2014 by what it believed was a âstate-sponsored actor.â It did not name the country involved.
The company said it was working with law enforcement officials. It encouraged users to review their online accounts for suspicious activity and to watch out for suspicious emails.
The announcement comes as Verizon Communications moves forward with its $ 4.8 billion acquisition of Yahoo. It is unclear what effect the breach, if any, will have on Yahooâs sale price. That will most likely depend on what Verizon learns about Yahooâs security controls. But security experts say the incident could have far-reaching consequences for users beyond Yahooâs services.
âThe stolen Yahoo data is critical because it not only leads to a single system but to usersâ connections to their banks, social media profiles, other financial services and usersâ friends and family,â said Alex Holden, the founder of Hold Security, which has been tracking the flow of stolen Yahoo credentials on the underground web. âThis is one of the biggest breaches of peopleâs privacy and very far reaching.â