Following the news about Yahoo Cyber Indictment Jeremiah Grossman, Chief of Security Strategy at SentinelOne commented below.
Jeremiah Grossman, Chief of Security Strategy at SentinelOne:
“As I look at the way this story is unfolding, there are strong parallels between this and the Google Aurora attacks in 2010. Nation-state sparring continues playing out on private systems like Yahoo’s because they can provide a valuable source of intelligence on your opponent’s or other people of interest. Also, if you are a nation-state and want to determine if any of your spies have been burned, you put taps on Google, Yahoo, Microsoft etc — not just the telecom networks. Of course, there is always the motivation to deanonymize political dissidents by oppressive regimes.
Another aspect of this story that concerns me is that allegedly, Yahoo hackers were able to ‘mint’ auth cookies, which indicates a very deep level of intrusion and that there was probably not a lot that they couldn’t access. If this was the case, there’s absolutely nothing users could have done to protect themselves, which would be true for any website.”