Security Tech News

All 3 Billion Yahoo Users Were Hit by Epic Hack

Dave Parrack 04-10-2017

In December 2016, Yahoo revealed it had been hacked Yahoo Reveals Yet Another Giant Security Breach Another day, another Yahoo hack. This one dating back all the way to 2013. This particular security breach resulted in the user data of 1 billion Yahoo accounts being stolen. Read More back in 2013. It was reported at the time that this security breach by an “unauthorized third party” saw the user data associated with 1 billion accounts stolen. However, it turns out that this epic hack was even worse than Yahoo thought.


This hack didn’t just affect 1 billion random Yahoo users. Instead, it hit every single Yahoo account that existed in August 2013. And there were 3 billion of them at the time. Let that sink in for just a minute: 3. billion. accounts. Making it the largest data breach in history. That we know of…

The Most Epic Security Breach Ever Recorded

Since Yahoo first disclosed the hack Verizon has acquired the company. During that acquisition new intelligence was uncovered that clued Yahoo into the fact it had underestimated just how epic this hack was. Rather than “just” 1 billion users being affected, all 3 billion users were caught up in it.

Yahoo has subsequently sent out a notice revealing the truth. The company states it now believes that “all Yahoo user accounts were affected by the August 2013 theft”. And Yahoo, now called Oath, has drawn this conclusion “following an investigation with the assistance of outside forensic experts”.

All 3 Billion Yahoo Users Were Hit by Epic Hack black and white hacker

Thankfully, although the size of the security breach has been scaled up significantly, the information stolen has remained the same. Which means that “names, email addresses, telephone numbers, dates of birth, hashed passwords […] and, in some cases, encrypted or unencrypted security questions and answers” were stolen.


However, Oath (formerly Yahoo) is ultra keen to stress that no “passwords in clear text, payment card data, or bank account information” was stolen from its servers. This should be of some comfort to anyone who had a Yahoo account in 2013. Which is probably most people reading this right now.

Please Follow Yahoo’s Common Sense Advice

Oath has created a full page of FAQs related to this data breach. And this provides the common sense advice the company suggests you follow in order to safeguard your information. Which basically amounts to changing your passwords 6 Tips For Creating An Unbreakable Password That You Can Remember If your passwords are not unique and unbreakable, you might as well open the front door and invite the robbers in for lunch. Read More and security questions and answers for any and all Yahoo accounts, and, crucially, all other accounts that share the same or similar information.

What do you think of the revelation that all 3 billion Yahoo accounts were affected by this security breach? Did you have a Yahoo account in 2013? If so, what steps are you taking to secure your account? Albeit four years too late. Please let us know in the comments below!

Image Credit: Christoph Schulz via Flickr

Related topics: Hacking, Yahoo.

Affiliate Disclosure: By buying the products we recommend, you help keep the site alive. Read more.

Whatsapp Pinterest

Leave a Reply

Your email address will not be published. Required fields are marked *

  1. silverlokk
    October 7, 2017 at 3:30 am

    No mention of two-factor authentication? Or is that flawed as well?

  2. KwaK
    October 5, 2017 at 2:07 pm

    "Since Yahoo first disclosed the hack Verizon has acquired the company."

    First time I hear of a company being acquired through hacking.... :D

  3. cybernard
    October 5, 2017 at 2:43 am

    How about just turn shutdown yahoo mail, and put them out of their misery.