Yahoo Hack: Senators Call on CEO Marissa Mayer to Explain Why It Took Two Years to Report Massive Breach

Six Democratic U.S. senators sent a letter to Yahoo CEO Marissa Mayer asking for more details on the hack in which data on more than 500 million user accounts was stolen and saying it was “unacceptable” that it took the internet company the two years to report the attack.

In the Sept. 27 letter, Sens. Ed Markey (D-Mass.), Patrick Leahy (D-Vt.) and four other Senators requested that the company provide a timeline of the hack, including when law enforcement and users were notified, as well as info on how widespread the hack is and what Yahoo is doing to prevent such a hack in the future. The breach is believed to be the largest-ever single theft of user data.

The lawmakers said they were “disturbed that user information was first compromised in 2014, yet the company only announced the breach last week. That means millions of Americans’ data may have been compromised for two years. This is unacceptable.”

A Yahoo rep said in an emailed statement, “We have received the letter and will work to respond in a timely and appropriate manner.”

Mayer has known since July about the company’s investigation into allegations of a major security breach, the Financial Times reported last week, citing an anonymous source.

The company, which reached a deal in July to sell its core web businesses to Verizon for $4.8 billion, last week said a “state-sponsored actor” broke in Yahoo’s network in late 2014 and stole usersnames, hashed passwords, and other personal info for at least 500 million accounts worldwide. Yahoo has not provided an explanation for why it has taken two years to report the incident, nor did it identify the country it believes was behind the attack.

“The stolen data included usernames, passwords, email addresses, telephone numbers, dates of birth, and security questions and answers,” the senators wrote in the letter to Mayer. “This is highly sensitive, personal information that hackers can use not only to access Yahoo customer accounts, but also potentially to gain access to any other account or service that users access with similar login or personal information, including bank information and social media profiles.”

In addition to Leahy and Markey, the letter was signed by Sens. Al Franken (D-Minn.), Elizabeth Warren (D-Mass.), Richard Blumenthal (D-Conn.) and Ron Wyden (D-Ore.). The inquiry comes a day after Sen. Mark Warner (D-Va.) asked the Securities and Exchange Commission to investigate whether Yahoo and its senior executives “fulfilled their obligations” under federal securities laws to inform the public and investors about the security breach.

According to Verizon, Yahoo informed the telco of the scope of the breach two days before Yahoo announced the incident on Sept. 22. Yahoo said in a Sept. 9 proxy statement filed with SEC that “there have not been any incidents of, or third-party claims alleging, (i) Security Breaches, unauthorized access or unauthorized use of any of Seller’s or the Business Subsidiaries’ information technology systems or (ii) loss, theft, unauthorized access or acquisition, modification, disclosure, corruption, or other misuse of any Personal Data” in its possession.

Experts say Yahoo’s costs associated with the security breach will run into the tens of millions of dollars, and could lead Verizon to renegotiate or void its proposed acquisition. The security breach has already spawned several proposed class-action lawsuits by users.

Yahoo has recommended that users who haven’t changed their passwords since 2014 do so, and the company said it was working with law-enforcement officials to investigate the incident. According to the company, based on what it has learned so far, none of the stolen information included unprotected passwords, payment-card data, or bank-account information.

Popular on Variety

More Digital

  • Ann Sarnoff Warner Bros

    Ann Sarnoff Formally Takes Reins of Warner Bros. as CEO

    The Ann Sarnoff era at Warner Bros. has begun. Sarnoff formally took the reins as Warner Bros. chair-CEO on Thursday, two months after she was appointed to the post. Sarnoff told employees in a memo that she has been impressed by the company’s track record during the past year amid a period of upheaval for [...]

  • YouTube TV Adds Subscription Options for

    YouTube TV Adds Subscription Options for AMC Networks' Acorn TV, UMC

    Google’s YouTube TV now offers two more add-on channels to subscribers, under an expanded pact with AMC Networks: British TV service Acorn TV and UMC (Urban Movie Channel), which features a selection of black TV and film titles. Acorn TV’s add-on channel is now available via YouTube TV for $6 per month and UMC is [...]

  • homepod-white-shelf

    Apple Said to Prep Cheaper HomePod for 2020

    Apple is getting ready to introduce a cheaper version of its HomePod smart speaker in 2020, Bloomberg reported Thursday. The company is also working on a new version of its AirPod headphones for next year, according to Bloomberg. Apple didn’t immediately respond to a request for comment. The new version of the HomePod is said [...]

  • Eminem Publisher Sues Spotify, Claiming Copyright

    Eminem Publisher Sues Spotify, Claiming Massive Copyright Infringement

    Eight Mile Style, a publishing company that holds administration rights to Eminem’s early catalog, filed a major copyright infringement lawsuit against Spotify late Thursday, claiming that the streaming giant has no license to host about 250 of Eminem’s songs, while also taking aim at the Music Modernization Act, the federal law enacted last year to [...]

  • iQIYI headquarters building in Beijing

    China’s iQIYI in Talks for Indonesia Expansion

    Chinese streaming firm iQIYI is in negotiations to expand further into Southeast Asia through a venture with Indonesia’s Media Nusantara Citra. iQIYI announced its first step outside Chinese-majority territories in June, when it revealed a linkup in Malaysia with pay-TV leader Astro. It also operates in Taiwan. In April, the company said that it planned [...]

More From Our Brands

Access exclusive content