SAN DIEGO – Yahoo said its email service recently fell victim to a coordinated cyberattack that resulted in the compromise of an undisclosed number of user accounts.
The Sunnyvale, Calif., tech company announced the attack Thursday, saying it has taken immediate action to protect users who were affected by the breach by prompting them to reset their passwords.
The company said it has found no evidence that Yahoo Mail was hacked into. Rather, the emails and passwords used to access users’ accounts were likely obtained from a third-party database that was compromised.
“Our ongoing investigation shows that malicious computer software used the list of usernames and passwords to access Yahoo Mail accounts,” Yahoo said in a blog post.
After breaching accounts, hackers tried to obtain the emails and addresses of people whom the compromised users most recently sent messages to, Yahoo said.