Yahoo's claim of 'state-sponsored' hackers meets with skepticism

Yahoo has blamed its massive data breach on a "state-sponsored actor"

Yahoo has blamed its massive data breach on a "state-sponsored actor." But the company isn't saying why it arrived at that conclusion. Nor has it provided any evidence.

The lingering questions are causing some security experts to wonder why Yahoo isn't offering more details on a hack that stole account information from 500 million users.

"I think there's a lot of fishiness going on here," said Michael Lipinski, the chief security strategist at Securonix.

Yahoo didn't respond to a request for comment. The company has protocols in place that can detect state-sponsored hacking into user accounts. In a December 2015 blog post, the company outlined its policy, saying it will warn users when this is suspected. 

"In order to prevent the actors from learning our detection methods, we do not share any details publicly about these attacks," wrote Yahoo chief information security officer Bob Lord at the time. He added that the company only sends out these notifications "when we have a high degree of confidence."

However, blaming a high-profile breach on state-sponsored hackers might also be a convenient excuse to reduce culpability.

"If I want to cover my rear end and make it seem like I have plausible deniability, I would say 'nation-state actor' in a heartbeat," said Chase Cunningham, director of cyber operations at security provider A10 Networks.

The perception is that state-sponsored hackers are unstoppable and among the best in the world, he added. Cunningham suspects that cyber criminals, and not an elite government-back group, may have actually targeted Yahoo.

"This just doesn't reek of nation-state activity," he said. "Nation-states are after intellectual property. They don't give a damn about emails and passwords from a Yahoo account."

The internet company might also be holding back details on the breach because of Verizon, which has agreed to pay US$4.8 billion to buy Yahoo.

"I'm not sure the Verizon acquisition will still go through," said Lipinski of Securonix. Verizon, for example, might have to fork up millions more in cash in dealing with the breach's fallout.

"But blaming it on a state-sponsored actor will kind of help them (Yahoo)," he added. "They can say, 'It's not our fault, our insurance will take care of it.'"

Even though Yahoo hasn't provided much evidence, other security experts also said it's still very possible state-sponsored hackers were responsible for the data breach. A government might have been interested in targeting the email accounts of human rights activists, for instance. Or the breach could have been initiated by a company insider, who was actually a spy.

There are other possible reasons for Yahoo to withhold data, added Vitali Kremez, a cybercrime analyst with security firm Flashpoint.

"Law enforcement could be investigating and they (Yahoo) don't want to jeopardize anything," he said. "They could also be preparing legal proceedings."

Yahoo said it only recently learned of the data breach. But the hack actually occurred back in late 2014 -- meaning the perpetrators had two years to secretly exploit the data.

If state-sponsored hackers did indeed target Yahoo, Kremez fears that other companies might have been victims as well -- they just don't know it. 

"We do need more transparency," Kremez said. "We'd all like to know more to see if this fits into a larger pattern."

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection
Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Michael Kan

IDG News Service
Show Comments

Cool Tech

Breitling Superocean Heritage Chronographe 44

Learn more >

SanDisk MicroSDXC™ for Nintendo® Switch™

Learn more >

Toys for Boys

Family Friendly

Panasonic 4K UHD Blu-Ray Player and Full HD Recorder with Netflix - UBT1GL-K

Learn more >

Stocking Stuffer

Razer DeathAdder Expert Ergonomic Gaming Mouse

Learn more >

Christmas Gift Guide

Click for more ›

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Edwina Hargreaves

WD My Cloud Home

I would recommend this device for families and small businesses who want one safe place to store all their important digital content and a way to easily share it with friends, family, business partners, or customers.

Walid Mikhael

Brother QL-820NWB Professional Label Printer

It’s easy to set up, it’s compact and quiet when printing and to top if off, the print quality is excellent. This is hands down the best printer I’ve used for printing labels.

Ben Ramsden

Sharp PN-40TC1 Huddle Board

Brainstorming, innovation, problem solving, and negotiation have all become much more productive and valuable if people can easily collaborate in real time with minimal friction.

Sarah Ieroianni

Brother QL-820NWB Professional Label Printer

The print quality also does not disappoint, it’s clear, bold, doesn’t smudge and the text is perfectly sized.

Ratchada Dunn

Sharp PN-40TC1 Huddle Board

The Huddle Board’s built in program; Sharp Touch Viewing software allows us to easily manipulate and edit our documents (jpegs and PDFs) all at the same time on the dashboard.

George Khoury

Sharp PN-40TC1 Huddle Board

The biggest perks for me would be that it comes with easy to use and comprehensive programs that make the collaboration process a whole lot more intuitive and organic

Featured Content

Product Launch Showcase

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?