Looks like we can’t separate Yahoo and bad news! An investigation by the US Securities and Exchange Commission (SEC) has confirmed more than 32 million accounts were breached in a cookie-forging attack dating back to 2015 and 2016.
The is coming at a time when Yahoo has not yet recovered from two separate massive breaches which affected over 500 million and one billion users respectively.
The details have not been revealed though the breach is suspected to have been linked to the 2014 hacking.
According to the filed documents, the attack relied on a cookie forgery to obtain access to user accounts.
SEC has concluded that certain some unnamed senior executives failed to “properly comprehend or investigate” the full extent of the breach. It also stated the Yahoo legal team had sufficient information to open further inquiry back in 2014.
Yahoo CEO Marissa Mayer announced in a Tumblr post that she is fully taking responsibilities for these blunders and has agreed to forgo her annual bonus and equity grant, expressing a desire that her additional compensation be redistributed to “company’s hardworking employees.”