Hackers publish data 453,000 Yahoo accounts
Hackers collective D33Ds Company has published names and passwords of 453,000 accounts of Yahoo services. The hackers probably entered Yahoo Voice via a SQL injection. The data was not encrypted.
A collective of hackers calling itself the D33Ds Company has posted the usernames and passwords of a total of 453,492 Yahoo accounts on its site. Usernames include not only Yahoo email addresses, but also Gmail, Live, and AOL addresses. The hackers entered through a SQL injection at a Yahoo subdomain. The collective does not report which vulnerability and which domain it concerns ‘to prevent further damage’.
From the hostname ‘dbb1.ac.bf1.yahoo.com’ also released at the time of publication makes However, security company Trusted Sec points out that it is probably Yahoo Voice. The account names and passwords would have been stored unencrypted. In addition to the account information, there are also more than 2700 table and column names, and 298 MySQL variables from the hacked database published† The authenticity of the hack has not yet been verified and Yahoo has not yet commented on the publication.