Yahoo reveals more breachiness to users victimized by forged cookies
Yahoo has sent out another round of notifications to users, warning some that their accounts may have been breached as recently as last year. The accounts were affected by a flaw in Yahoo’s mail service that allowed an attacker—most likely a “state actor,” according to Yahoo—to use a forged “cookie” created by software stolen from within Yahoo’s internal systems to gain access to user accounts without a password.
Tags:
Read more: Yahoo reveals more breachiness to users victimized by forged cookies
Story added 16. February 2017, content source with full text you can find at link above.