Yahoo stall: information disclosure caused by fear of their "marriage" out-Verizon, Yahoo-IT information
September 24, Beijing time, according to foreign media reports, the science and technology circle broke a major news yesterday: already bought by Verizon, Yahoo said more than 500 million users of Yahoo accounts hacked, including user name, email address, login password, date of birth and a secret security answer, time of crime dating back to the year 2014. This incident once again Yahoo are on the cusp, for some time in the future it will be drowned by the Government and the user's mouth, and its new owner, even a 180 degree turn.
"The very serious consequences of information disclosure, Yahoo may be busy in the court challenge, on the back of significant damages. "Security company CTO of LogRhythm, Chris said. "This far-reaching, worst case may delay Verizon takeover of Yahoo. ”
In addition, Yahoo will let users disappointed, or even complete loss of credibility in a certain user groups.
Now, from all walks of life care most about is Yahoo exactly when information disclosure issue has been identified, whether they hide for a long time before deciding to the public?
If Yahoo were only recently discovered this huge loophole, morally it is a victim, but it would also have an adverse effect, a world-famous big technology companies, in the face of hackers had 18 months to respond, this level is not too bad.
However, if this assumption does not hold, know hacking Yahoo two years ago, then I am afraid that hidden and not have disastrous consequences for the company.
Analyst Evans said: " given this information leak incident involving a number of Yahoo users in foreign countries, if they are intentionally hidden his report, I am afraid, simple hearings have been unable to resolve the scandal . ”
After the incident, Yahoo wanted to dump responsibility to other countries, saying that the leak was caused by organized hacker attack, but in any case, the impact of remains back to themselves. IBM study shows that information leak discovered late, causing a greater loss.
For now, Yahoo is rushing to fix their security systems, they also prompts the user for account upgrades, passwords, and security issues, but these efforts have been futile, because they're too late.
Yahoo is the only mainstream technology companies are not using two step validation company, their determination and confidence has now completely fallen to the freezing point.
In addition, Yahoo has also drawn criticism from the society. RedSeal CEO said: "Yahoo may think information disclosure is routine, they didn't think a positive response. After all the responses are routine, apology, urging the user to change the password and promise not to do it again, don't see any sincerity. "To avoid such incidents from happening again, Yahoo must carry out in-depth investigation, otherwise their commitment does not work at all.
Leak this information early warning on previous earnings conference, Yahoo mentioned their security system is vulnerable to hackers, just when nobody cares about it. In addition, Yahoo executives responsible for information security also said that he tried many times caused Mayer to higher levels of attention to safety problems, but all of them failed. Now, they are paying the price for his contempt.
Analysts generally think that is estimated to be at least 5% users will directly leave Yahoo, after conversion is probably 50.01 billion. If Verizon had they known it, it would substantially drive down Yahoo's purchase price.
After information leaks out, and Yahoo give up attitude has been fully known to the world, such a company is worth acquiring quality assets? I'm afraid that Verizon would stop and think.
雅虎摊上事:信息泄露恐致自己“嫁”不出去 - Verizon,雅虎 - IT资讯
北京时间9月24日消息,据外媒报道,昨天科技圈爆出了个大新闻:已经被Verizon收购的雅虎公司称超过5亿个雅虎用户账户信息被黑客窃取,包括用户姓名、邮箱地址、登录密码、出生日期和密保问题答案等,作案时间最早可追溯到2014年。这一事件再次让雅虎走上了风口浪尖,未来一段日子它将被政府和用户的口水淹死,而其新东家的态度甚至会发生180度大转弯。
“信息泄露的后果很严重,雅虎可能会忙于在法庭应战,背上大笔赔偿金。”安全公司LogRhythm的CTO克里斯说道。“这次事件影响深远,最坏的情况下可能会耽误Verizon对雅虎的收购。”
除此之外,雅虎还会让用户大失所望,甚至在某些用户群中彻底丧失公信力。
现在,各界最关心的问题是雅虎到底何时发现了信息泄露问题,它们是否隐瞒了许久才决定公之于众?
如果雅虎真的是最近才发现这一巨大漏洞,那么在道义上它是受害者,不过这样也会带来负面效应,一个享誉世界的大型科技公司,面对黑客攻击居然18个月才有所反应,这水平是不是也太差了。
但如果这项假设不成立,雅虎两年前就知道黑客攻击的事,那么恐怕隐而不报也会为这家公司带来灾难性的后果。
分析师埃文斯表示:“鉴于雅虎这次的信息泄露事件涉及许多国外用户,如果它们是刻意隐瞒不报,恐怕简单的听证会已经无法解决这一丑闻了。”
事件发生后,雅虎曾想将责任甩给其他国家,称这次泄露是有组织的黑客攻击造成的,但无论如何,其造成的影响依然要自己来背。IBM研究显示,信息泄露发现得越晚,造成的损失就越大。
眼下,雅虎正在抓紧修复自家的安防系统,它们还提示用户尽快对账户、密码和安全问题等进行升级,不过这些努力已经于事无补,因为它们来得太晚了。
雅虎是时下主流科技公司中唯一没有使用两步验证的公司了,它们的决断力和可信度现在已经彻底跌到了冰点。
此外,雅虎的态度也招致了全社会的批评。RedSeal公司CEO表示:“雅虎可能觉得信息泄露已经是家常便饭了,它们根本没想着积极应对。出事后所有的回应都是套路,道歉、催促用户修改密码并保证不会再犯,看不出任何诚意。”想要避免此类事件再次发生,雅虎必须进行深入调查,否则它们的承诺根本不起作用。
其实这次信息泄露事故早有先兆,在此前的财报会议上,雅虎就提到了自己的安防系统在黑客面前相当脆弱,只是当时根本没人在意而已。此外,雅虎此前负责信息安全的高层员工也表示,他尝试过很多次要引起梅耶尔对安全问题更高级别的重视,但是全部都失败了。现在,它们要为自己的轻慢付出代价。
分析师们普遍认为,估计会有至少5%的用户会因此直接抛弃雅虎,换算后大概是500-1000万人。如果Verizon早知此事,它肯定会大幅压低雅虎的收购价。
信息泄露事件曝出之后,雅虎自暴自弃的心态已经完全大白于天下,这样的公司还是值得收购的优质资产吗?恐怕Verizon也会静下心来想想吧。