Yahoo! Inc. is the latest high-profile company to be hacked. In this instance, more than 453,00 login credentials that were stored in plain text were accessed and subsequently posted upon the D33D Company hacker site.
It is being reported by TrustedSec that the user information came from the Yahoo! subdomain Yahoo Voices, a division of the company that concentrates on online publishing.
The yet-to-be-named hackers claim to have used a union-based SQL injection technique in order to access the user information. While some may see this move by those involved as a very mean-spirited way to infringe upon user privacy, the hackers claim that they did this in order to get Yahoo!'s attention.
At the bottom of the stolen data, the hackers made the following statement:
"We hope that the parties responsible for managing the security of this subdomain will take this as a wake-up call, and not as a threat. There have been many security holes exploited in webservers belonging to Yahoo! Inc. that have caused far greater damage than our disclosure. Please do not take them lightly. The subdomain and vulnerable parameters have not been posted to avoid further damage."
Yahoo! has confirmed that it's investigating the matter.
Last month, six-million LinkedIn users had their passwords accessed by hackers, while last year Sony's PlayStation Network and Qriocity services were unlawfully tapped into. The personal information of tens of millions of users was compromised.
Photo by: Salvatore Vuono