There’s one thing I don’t understand with this “state sponsored actor”. Say you ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

elorant on Sept 22, 2016 | parent | context | favorite | on: An Important Message About Yahoo User Security

There’s one thing I don’t understand with this “state sponsored actor”. Say you are an oppressive regime and you target activists who use yahoo mail to publish your dirty laundry. Why on earth would you hack half a billion accounts just to get access to a few dozen ones? Doesn’t make sense. You attract too much attention. A thing like that would never go unnoticed. If on the other hand you’ve found some exploit and target specific accounts which are numbered in the tens, say hundreds, you can easily get away with it.

BTW, I don’t know if it’s coincidental but just yesterday I received a notification from Yahoo to disable access to Mail from third party apps.

krallja on Sept 22, 2016 | [–]

The hack was probably "take a copy of the DB, decrypt our targets' password offline", not some sophisticated online attack.

pbosko on Sept 22, 2016 | [–]

Maybe you are NSA and you say "All your data are belong to US", as discovered by Snowden.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact