Hackers post over 400,000 Yahoo! Voice passwords online

Hackers post over 400,000 Yahoo! Voice passwords online

It appears that Yahoo!’s voice over IP network has been compromised, with claims that the username and passwords were stored completely unencrypted

By | Computerworld UK | Published 11:46,

Over 400,000 Yahoo! Voice username and passwords have been posted online by hackers claiming to have compromised the voice over IP (VoIP) network.

A plain text data dump has been posted on the internet with passwords pertaining to a wide variety of email addresses, including those from yahoo.com, gmail.com and aol.com.

Yahoo! Voice was set up after Yahoo! bought Associated Content for more than £64 million in early 2010.

Security firm Trustedsec has looked into the breach and claims that Yahoo! was storing the data without it being encrypted.

In a blog post, Trustedsec said: “The most alarming part of the entire story was the fact that the passwords were stored completely unencrypted and the full 400,000+ usernames and passwords are now public.”

“The method for the compromise was apparently a SQL Injection attack to extract the sensitive information from the database.”

Computerworld UK contacted Yahoo! for comment but was told that it was still investigating the claims.

Comments

Advertisement
Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

ComputerworldUK Webcast

ComputerworldUK
Share
x
Open
* *