The data breach that affected all 3 billion Yahoo accounts beginning in 2013 is getting a bit of closure this week, with a settlement agreement between Yahoo and the Northern District Court of California (via Engadget). In the settlement, Yahoo has agreed to put $50 million into a fund for victims of the breach, provide two years of credit monitoring from AllClear, and a few other benefits for victims. The settlement is still awaiting court approval.
Those users who spent time addressing the damage from the breach, and can show documentation that they were affected, will be able to file a complaint. The filing requires users to prove documented losses of time measured in hours, and victims can be awarded $25 per hour for up to 15 hours at a maximum of $375. If the user does not have proof of lost time, they are eligible for up to five hours of compensation reaching $125. Those who paid for a premium Yahoo email account will be able to request a 25 percent refund.
In September 2016, Yahoo first disclosed a 2014 hack in which "at least" 500 million Yahoo accounts were compromised. In December 2016, Yahoo then disclosed a second major hack that affected more than one billion accounts in August 2013 -- the case that this settlement is addressing. Yahoo's new parent company Verizon then explained in October 2017 that all three billion Yahoo accounts that existed at the time were affected in the 2013 hack.
Information stolen from affected accounts in the 2013 data breach included names, email addresses, telephone numbers, birth dates, hashed passwords, and both encrypted and unencrypted security questions and answers. Clear text passwords, bank account information, and credit/debit card information were not believed to have been accessed in the attack.
Verizon said in a statement last year, "We proactively work to ensure the safety and security of our users and networks in an evolving landscape of online threats," further iterating that Yahoo will now "benefit from Verizon's experience and resources" in the field of privacy and security.
Those users who spent time addressing the damage from the breach, and can show documentation that they were affected, will be able to file a complaint. The filing requires users to prove documented losses of time measured in hours, and victims can be awarded $25 per hour for up to 15 hours at a maximum of $375. If the user does not have proof of lost time, they are eligible for up to five hours of compensation reaching $125. Those who paid for a premium Yahoo email account will be able to request a 25 percent refund.
In September 2016, Yahoo first disclosed a 2014 hack in which "at least" 500 million Yahoo accounts were compromised. In December 2016, Yahoo then disclosed a second major hack that affected more than one billion accounts in August 2013 -- the case that this settlement is addressing. Yahoo's new parent company Verizon then explained in October 2017 that all three billion Yahoo accounts that existed at the time were affected in the 2013 hack.
Information stolen from affected accounts in the 2013 data breach included names, email addresses, telephone numbers, birth dates, hashed passwords, and both encrypted and unencrypted security questions and answers. Clear text passwords, bank account information, and credit/debit card information were not believed to have been accessed in the attack.
Verizon said in a statement last year, "We proactively work to ensure the safety and security of our users and networks in an evolving landscape of online threats," further iterating that Yahoo will now "benefit from Verizon's experience and resources" in the field of privacy and security.
Tag: Yahoo
22 comments
With Apple's new 16-inch MacBook Pro now in stores, we were able to pick one up this morning to take a look at it and provide MacRumors readers with our first impressions on the new machine.
...
Apple's new 16-inch MacBook Pro models are in stores as of today, and iFixit, a site known for its product teardowns, has purchased one and is going to take it apart.
The teardown is...
A parliamentary committee in Germany on Wednesday passed an amendment to an anti-money laundering law that would force Apple to open up the NFC chip in iPhones to competing mobile payment providers,...
Apple today activated its in-store reserve and pickup system for the new 16-inch MacBook Pro in the United States.
This system enables customers to purchase the 16-inch MacBook Pro on...
Apple is removing all vaping-related apps from the App Store today, according to Axios, shortly after the Centers for Disease Control and Prevention reported 2,172 lung injury cases linked to...
Though Apple has not yet come out with a 5G iPhone, the company is expected to lead the 5G smartphone market in 2020, according to a new report today from analytics firm Strategy Analytics.
...
Apple has been struggling to add new subscribers to its Apple News+ service that launched in March, according to a new report from CNBC that cites people familiar with Apple News+.
When Apple...
Apple today released a new firmware update for the AirPods Pro, which were originally released on October 30.
Today's firmware update is labeled as 2B588, up from 2B584, which was the...
