Yahoo’s two breaches have been said to be perpetrated by nation state-supported groups
Yahoo’s two breaches have been said to be perpetrated by nation state-supported groups

US law enforcement is closing in on four individuals it believes to be behind the hack on Yahoo. The US Department of Justice (DOJ) is reportedly planning to issue four indictments according to an anonymous source that spoke to Bloomberg.

Law enforcement apparently plans to arrest one individual in Canada early next week. Three of the purported suspects apparently reside in Russia. Neither Yahoo nor the DOJ would speak to Bloomberg on the matter.

It is not quite clear to which breach these indictments pertain, but Yahoo believes the famed mega breaches of 2013 and 2015 to have been carried out by the same state-sponsored actor.

Yahoo first disclosed a breach in September 2016, telling the public that the data of 500 million users had been accessed in 2014. In December, Yahoo reported an even bigger breach. The company announced in a blogpost that in 2013, an attacker had accessed the accounts of one billion users stealing their names, emails, phone numbers, dates of birth and MD5 encrypted passwords. The attack was quickly labelled as one of the largest breaches ever.

It did not end there. It was later revealed that key members of Yahoo management had known about the breach since 2014, but only told investors, users and stakeholders two years later.

Yahoo's reputation was marred by the two breaches over the last year and an impending acquisition by media company Verizon was thought to be put in jeopardy. Yahoo eventually took a considerable discount in the final deal. Yahoo took a £240 million discount on its initial July 2016 asking price of £3.84 billion.

Yahoo's now departing CEO, Marissa Meyer, also forewent her £1.6 million bonus in light of the disclosures and general counsel, Ronald Bell also resigned.