Yahoo breaches
2016-12-15 18:02:06.232778+01 by Dan Lyke 0 comments
Yahoo disclosed that an August 2013 breach disclosed information from a billion accounts. This is separate from the breach reported in September of half a billion accounts, and apparently included the unencrypted security question data.
Related to those breaches: We've long known that Yahoo has been scanning customer emails for a government agency, but that scanning was covering all email through Yahoo, not just targeted accounts, was implemented via a kernel module, and was implemented by bypassing the security team.
So, yes, at this point we can pretty much assume that any hostile anywhere has read email into or out of Yahoo.