Altaba fined USD 35 mln by SEC for late Yahoo data breach disclosure

News Broadband United States 25 APR 2018
Altaba fined USD 35 mln by SEC for late Yahoo data breach disclosure

The US Securities and Exchange Commission has fined Altaba, the company formerly known as Yahoo!, USD 35 million for failing to disclose the major personal data breach on its site and misleading investors. 

According to the SEC, Yahoo’s information security team was aware of the 2014 breach within days of the Russian hacking attempt, which affected hundreds of millions of user accounts. Although information relating to the breach was reported to members of Yahoo’s senior management and legal department, Yahoo failed to properly investigate the circumstances of the breach and to adequately consider whether the breach needed to be disclosed to investors. In the end the breach was not disclosed to the public until more than two years later, when Yahoo was in the process of closing the acquisition of its operating business by Verizon.

The SEC said public companies should have controls and procedures in place to properly evaluate cyber incidents and disclose material information to investors. None such information on the attack appeared in Yahoo's regular SEC filings in the two-year period. 

Categories:

Internet

Companies:

VerizonYahoo!

Countries:

United States

Tags:

Messaging, Regulations, Portals / social media, Information services

Related Articles

UNITED STATES 30 JAN 2019

US federal judge rejects Yahoo's settlement for security breach

A US federal court has rejected Yahoo's proposed settlement of USD 50 million in damages for the security breach disclosed in 2016, Reuters reported. Yahoo agreed in October to pay the money and to provide two years of free credit-monitoring services to 200 million people affected by breach in the USD and Israel. The US judge however said that the settlement lacked transparency and that she could not declare the settlement "fundamentally fair, adequate and reasonable" because it did not say how much victim

UNITED STATES 24 OKT 2018

Yahoo to pay USD 50 mln to settle security breach litigation

Yahoo has agreed to pay USD 50 million in damages and provide two years of free credit-monitoring services to 200 million people whose email addresses and other personal information were stolen in a security breach. The settlement must still be approved in federal court, AP reports. 

GLOBAL 17 SEP 2018

Altaba to pay USD 47 mln to settle Yahoo breach litigations

Altaba, the remaining holding company for Yahoo, has sent a letter to its shareholders, saying it has reached an agreement in principle to pay USD 47 million in litigation expenses to settle litigation around Yahoo's failure to disclose its 2014 cyber security breach. The settlement will settle all three cases related to the breach, Reuters noted.

UNITED STATES 8 JUN 2018

Altaba planning to buy back 24% of shares using Alibaba stock

Altaba, the remaining holding company for Yahoo, has announced a programme to buy back nearly 24 percent of its own shares in exchange for around 100 million of its shares in Chinese e-commerce giant Alibaba. The former Yahoo said the tender offer for up to 195,000,000 of its shares would be valued at USD 83.35 a share and that it also plans to sell at least 10 million Alibaba ADSs to pay taxes related to the offer. Upon completion of the programme, Altaba said it expects to own around 11 percent of Alibaba

CANADA 27 NOV 2017

Canadian charged in 2014 Yahoo data breach set to plead guilty

A Canadian accused of helping Russian intelligence agents hack Yahoo email accounts in a 2014 breach is set to change his plea to guilty next week, according to court records seen by Reuters. Karim Baratov, a 22-year-old Canadian citizen born in Kazakhstan, recently waived his right to fight a US request for his extradition from Canada. In March, US federal officials indicted four men, including two officers from Russia's Federal Security Service, in connection with the online security breaches at Yahoo, an

GLOBAL 4 OKT 2017

All 3 billion Yahoo accounts affected by 2013 breach - Verizon

Yahoo's new parent Verizon has revealed that every single customer account was likely affected by the August 2013 data breach at the internet company. "The company recently obtained new intelligence and now believes, following an investigation with the assistance of outside forensic experts, that all Yahoo user accounts were affected by the August 2013 theft," said Verizon in a statement. As a result, the hack affected some three billion accounts, or three times as many as Yahoo previously disclosed in Dece

UNITED STATES 15 MRT 2017

US charges four with Yahoo data breach

US federal officials have indicted four men, including two officers from Russia's Federal Security Service, in connection with the online security breaches at Yahoo, and for stealing personal data that affected hundreds of millions of Yahoo users. The Russian men paid others to collect information through computer intrusions in the US and elsewhere. All four hacked into the computers of US companies providing email and internet-related services. One, a Canadian and Kazakh national, was taken into custody in

GLOBAL 10 JAN 2017

Yahoo will be renamed Altaba, with new CEO

Yahoo will be renamed Altaba after the sale of its web assets to Verizon for USD 4.83 billion, the company said in an SEC regulatory filing, adding that CEO Marissa Mayer and five other directors will step down.

GLOBAL 15 DEC 2016

Yahoo reveals over 1 bln users hit by new security breach

Yahoo! has disclosed a new security breach that it says affected over 1 billion of its user accounts. The company said it has taken steps to secure user accounts and identify the source of the breach. As part of the investigation into the previous security breach announced in September, law enforcement officials provided the company with data files that a third party claimed was Yahoo user data. Analysis of the data with outside forensic experts found that it appears to be Yahoo user data. The company belie

GLOBAL 23 SEP 2016

Yahoo! confirms over 500 mln users' data hacked

Yahoo! has confirmed that details of over 500 million of its users' accounts were stolen by what it believes was a state-sponsored attack. The account information may have included names, email addresses, phone numbers, dates of birth, hashed passwords (the vast majority with bcrypt) and, in some cases, encrypted or unencrypted security questions and answers. Yahoo said it does not believe any credit card or other payment details were taken, as this is not stored in the same system found to be hacked. The c

Just In

19 DEC 16:42

SLT-Mobitel launches 5G network in Sri Lanka

19 DEC 16:19

Dialog Axiata launches 5G network, connects 1.5 million subscribers

19 DEC 15:56

UK govt to ban AI-enabled nudification apps to protect women, girls

19 DEC 15:42

3 UK launches last-minute Christmas sale

Commentary

13:56

Video market set for slower growth ahead

11:38

Netflix buys Warner Bros to deepen content catalogue

11:11

KPN's mixed performance in Q3 raises questions for strategy day

15:26

Stock markets breaking records but what happened to Odido's IPO plans?

Background

01:04

The week in telecom: Wi-Fi bolt-ons take off to boost broadband growth, video market works on consolidation

01:39

The week in telecom: Netflix wins bidding for Warner Bros, Apple poaches new execs, Samsung debuts trifold

13:51

Proximus vs. Telenet: Proximus performs better in Q3 while Telenet uses up cash

14:16

Proximus Domestic still struggling with low margins

Complete profile

Before downloading the whitepaper, we would like to ask you to complete your profile with company and position. After confirming you will receive the white paper.