Yahoo announced on Wednesday that yet another security breach had occurred, this time affecting over one billion accounts. This new hack dates all the way back to 2013 and is separate from incident that the company announced back in September.
The company says that an “unauthorized third party” may have been stolen users’ names, email addresses, and passwords back in August of 2013. They noted, however, that no financial information was stolen.
Yahoo will soon notify users who might be affected by the breach, and they have already begun to require users to change their passwords.
This incident could possibly be considered as one of the largest cyber-security breaches in history.
The September hack, in which the tech giant faulted a “state-sponsored actor,” resulted in 500 million stolen accounts. Yahoo says that the current and past incidents are likely unrelated.
“We believe this incident is likely distinct from the incident we disclosed on September 22, 2016,” said Bob Lord, Yahoo’s chief information security officer.
The first breach came shortly after Yahoo reached an agreement to be bought by Verizon for $4.8 billion, and it was speculated to be a retaliatory measure against the agreement. Verizon admitted that the breach could impact their deal financially.
Tim Armstrong, the CEO of AOL was “cautiously optimistic” that the deal would still go through. This second breach, however, could further impact the buyout.
On Wednesday, Verizon released a statement saying, “As we’ve said all along, we will continue to evaluate the situation as Yahoo continues its investigation. We will review the impact of this new development before reaching any final conclusions.”