Time to delete your Yahoo account and set it on fire, as Yahoo has reveled that “more than one billion user accounts” may have been hit in a hacking attack dating back to August 2013.
Yahoo says “this incident is likely distinct from the incident we disclosed on September 22, 2016,” and said that while it’s been working with law enforcement and a third-party cybersecurity firm to trace its origin, it doesn’t yet know who the perpetrator was.
“As we previously disclosed in November, law enforcement provided us with data files that a third party claimed was Yahoo user data,” Yahoo’s chief information security officer Bob Lord said in a statement.
“The stolen user account information may have included names, email addresses, telephone numbers, dates of birth, hashed passwords (using MD5) and, in some cases, encrypted or unencrypted security questions and answers,” he added.
Yahoo says payment card data and bank account information were not stored in the system believed to be affected and the hackers did not obtain passwords in clear text. However, we’d advise completely deleting your Yahoo account instead.