Yahoo's claim of 'state-sponsored' hackers meets with skepticism

Yahoo has blamed its massive data breach on a "state-sponsored actor"

Yahoo has blamed its massive data breach on a "state-sponsored actor." But the company isn't saying why it arrived at that conclusion. Nor has it provided any evidence.

The lingering questions are causing some security experts to wonder why Yahoo isn't offering more details on a hack that stole account information from 500 million users.

"I think there's a lot of fishiness going on here," said Michael Lipinski, the chief security strategist at Securonix.

Yahoo didn't respond to a request for comment. The company has protocols in place that can detect state-sponsored hacking into user accounts. In a December 2015 blog post, the company outlined its policy, saying it will warn users when this is suspected. 

"In order to prevent the actors from learning our detection methods, we do not share any details publicly about these attacks," wrote Yahoo chief information security officer Bob Lord at the time. He added that the company only sends out these notifications "when we have a high degree of confidence."

However, blaming a high-profile breach on state-sponsored hackers might also be a convenient excuse to reduce culpability.

"If I want to cover my rear end and make it seem like I have plausible deniability, I would say 'nation-state actor' in a heartbeat," said Chase Cunningham, director of cyber operations at security provider A10 Networks.

The perception is that state-sponsored hackers are unstoppable and among the best in the world, he added. Cunningham suspects that cyber criminals, and not an elite government-back group, may have actually targeted Yahoo.

"This just doesn't reek of nation-state activity," he said. "Nation-states are after intellectual property. They don't give a damn about emails and passwords from a Yahoo account."

The internet company might also be holding back details on the breach because of Verizon, which has agreed to pay US$4.8 billion to buy Yahoo.

"I'm not sure the Verizon acquisition will still go through," said Lipinski of Securonix. Verizon, for example, might have to fork up millions more in cash in dealing with the breach's fallout.

"But blaming it on a state-sponsored actor will kind of help them (Yahoo)," he added. "They can say, 'It's not our fault, our insurance will take care of it.'"

Even though Yahoo hasn't provided much evidence, other security experts also said it's still very possible state-sponsored hackers were responsible for the data breach. A government might have been interested in targeting the email accounts of human rights activists, for instance. Or the breach could have been initiated by a company insider, who was actually a spy.

There are other possible reasons for Yahoo to withhold data, added Vitali Kremez, a cybercrime analyst with security firm Flashpoint.

"Law enforcement could be investigating and they (Yahoo) don't want to jeopardize anything," he said. "They could also be preparing legal proceedings."

Yahoo said it only recently learned of the data breach. But the hack actually occurred back in late 2014 -- meaning the perpetrators had two years to secretly exploit the data.

If state-sponsored hackers did indeed target Yahoo, Kremez fears that other companies might have been victims as well -- they just don't know it. 

"We do need more transparency," Kremez said. "We'd all like to know more to see if this fits into a larger pattern."

Join the PC World newsletter!

Error: Please check your email address.

Our Back to Business guide highlights the best products for you to boost your productivity at home, on the road, at the office, or in the classroom.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Michael Kan

IDG News Service
Show Comments

Cool Tech

Crucial Ballistix Elite 32GB Kit (4 x 8GB) DDR4-3000 UDIMM

Learn more >

Gadgets & Things

Lexar® Professional 1000x microSDHC™/microSDXC™ UHS-II cards

Learn more >

Family Friendly

Lexar® JumpDrive® S57 USB 3.0 flash drive 

Learn more >

Stocking Stuffer

Plox Star Wars Death Star Levitating Bluetooth Speaker

Learn more >

Christmas Gift Guide

Click for more ›

Most Popular Reviews

Latest News Articles

Resources

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?