Yahoo is putting all the blame on its Yahoo! Contributor Network for exposing more than 450,000 credentials on Wednesday this week. According to the Internet giant, its Yahoo! Contributor Network, formerly known as Associated Content, did not require any strong passwords, so it’s considerably easy for hackers to breach the website. Today, Yahoo is announcing that it has already deployed the much needed security measures and enhanced our underlying security controls to prevent further damage. Yahoo acquired Associated Content a few years ago. Hackers responsible for the deed have previously said that the data breach was intended to be a wake-up call for Yahoo. Check out Yahoo’s official statement after the break.
Yahoo recently confirmed that an older file containing approximately 450,000 email addresses and passwords was compromised. The compromised information was provided by writers who had joined Associated Content prior to May 2010, when it was acquired by Yahoo!. (Associated Content is now the Yahoo! Contributor Network.) This compromised file was a standalone file that was not used to grant access to Yahoo! systems and services.
We have taken swift action and have now fixed this vulnerability, deployed additional security measures for affected Yahoo! users, enhanced our underlying security controls and are in the process of notifying affected users. In addition, we will continue to take significant measures to protect our users and their data.
If you joined Associated Content prior to May 2010 using your Yahoo email address, please log in to your Yahoo! account where you may be prompted to answer a series of authentication questions to change and validate your credentials.