How it really happened : NINJIO Season 1, Episode 12, Yahoo! breach

e12pictureIn this Episode, a large business acquisition is underway between Horizon and Wahoo.  During the middle of the acquisition, news broke that over half-a-billion credentials were breached from Wahoo.  The CEO of Horizon learned about the breach via the NINJIO News Network (NNN) and not from the CEO of Wahoo himself, which caused a major uproar and is putting the acquisition at risk.

We learn that the source of the breach was a “watering hole” attack.

 

  1. Yahoo says 500 million accounts stolen

One of the biggest data breaches to date was a recent Yahoo attack that exposed an estimated 500 million accounts. The company claims it was a government sponsored attack, and the FBI is currently investigating.

 

  1. Verizon Puts Yahoo on Notice After Data Breach

Yahoo allegedly knew of the breach prior to announcing it to its users. Some experts think it was hidden during Verizon buyout negotiations, but the announcement of the attack has led to re-negotiation proceeding between Yahoo and Verizon.

 

  1. Fake Flash Update Malware Targets Gullible Apple Users

It’s common for hackers to target employees in an effort to gain access to internal data and accounts. Hackers use phishing emails with fake software update popups. Employees install these fake updates and leave their computers open for eavesdropping and remote control.

 

  1. Rigged Industrial Software Site Points to Watering Hole Attack

Hackers target groups of people within an organization in an attempt to gain access to data. They also use malware embedded in what looks like legitimate software.

 

  1. Why Watering Hole Attacks Work

Watering hole attacks cater to a wider range of users (unlike spear phishing), so they are sometimes much more effective. This article explains why they work.

6 Comments
  • Senada Rangelov
    Posted at 08:36h, 08 December

    Good stuff

  • Nora E. Allen
    Posted at 18:25h, 20 December

    Thanks for the information.

  • Thomas J. Wubben
    Posted at 19:50h, 20 December

    One must expect that every email that is sent, could possibly go viral.

  • cesar sotelo
    Posted at 21:00h, 20 December

    Good Info.

  • Desiree Pangan
    Posted at 18:42h, 27 December

    Thanks for the info

  • shirin friedman
    Posted at 19:02h, 19 January

    good knowledge