The Biggest Data Breaches Of 2012 (So Far)


More than 400,000 plaintext passwords were lifted from Yahoo and subsequently posted on the Internet on July 11th. While most of the passwords seem to have been taken from the Yahoo voice services, various industry sources are recommending that everyone with a Yahoo account immediately change their passwords. A group called the D33DS Company has been attributed as the source of the breach. The hackers are believed to have used a Union-based SQL injection to collect the data, and posted the passwords as a high-profile way of making a point about Yahoo’s security, and the state of information security, in general.

Get a roundup of CRN's security coverage right to your inbox with the Security Advisor newsletter.