Yahoo reports data breach for 450,000

Yahoo confirmed Thursday that hackers broke into the company’s network and stole the login information of about 450,000 individuals who use Yahoo and other popular Internet e-mail services, including Google Inc.’s Gmail, AOL,, and MSN.

The hacker group, which calls itself D33D, broke into a list of the e-mail addresses and passwords of people signed up for the Yahoo Contributor Network, a place for budding writers, photographers, and videographers to publish their work on the Internet. Because users can opt to use an outside e-mail address to join the network, the stolen information included user names and passwords for accounts on a number of e-mail services.


Less than 5 percent of the stolen passwords were valid, Yahoo spokeswoman Dana Lengkeek said in a statement, because only those users whose network passwords matched their e-mail passwords were vulnerable to being hacked.

“We are taking immediate action by fixing the vulnerability that led to the disclosure of this data, changing the passwords of the affected Yahoo users, and notifying the companies whose users accounts may have been compromised,” she said. “We encourage users to change their passwords on a regular basis, and also familiarize themselves with our online safety tips at”

Get BetaBoston Daily in your inbox:
Stay ahead of the competition with the most up-to-date info on Boston's startup community
Thank you for signing up! Sign up for more newsletters here

Marcus Carey, a researcher at Boston-based data security company Rapid7, said Yahoo might not have taken basic safety precautions such as encrypting passwords. He said the easiest thing an individual can do to avoid being hacked is to change e-mail passwords every 45 to 90 days.

“The key thing is from a corporate perspective: Perhaps invest more in security,” Carey said. “If Yahoo didn’t [encrypt their passwords], they were probably cutting corners on other things.”

There is no way for individuals to know if they were hacked, Carey said, but a password change is probably a good idea. “I would recommend if people know that they use that particular network, change their password,” he said, “and if they feel uneasy about it, change their password anyway.”

Laura Finaldi can be reached at
Loading comments...
Real journalists. Real journalism. Subscribe to The Boston Globe today.
You're reading  1 of 5 free articles.
Get UNLIMITED access for only 99¢ per week Subscribe Now >
You're reading1 of 5 free articles.Keep scrolling to see more articles recomended for you Subscribe now
We hope you've enjoyed your 5 free articles.
Continue reading by subscribing to for just 99¢.
 Already a member? Log in Home
Subscriber Log In

We hope you've enjoyed your 5 free articles'

Stay informed with unlimited access to Boston’s trusted news source.

  • High-quality journalism from the region’s largest newsroom
  • Convenient access across all of your devices
  • Today’s Headlines daily newsletter
  • Subscriber-only access to exclusive offers, events, contests, eBooks, and more
  • Less than 25¢ a week
Marketing image of
Marketing image of