Finnish security researcher Jouko Pynnonen found a second stored cross-site scripting vulnerability in Yahoo Mail in less than a year, both of which earned him $10,000 bug bounties. The déjà vu is ...

Late last night reports started coming in suggesting that Yahoo Mail users have had their accounts hacked. While “hacked” is a very broad term nowadays, it does appear that Yahoo email accounts are ...

The flaw was discovered and reported by Finland-based security researcher Jouko Pynnonen who earned $10,000 for the feat from Yahoo's bug bounty program. The flaw allowed an attacker to read a ...

Security researcher Shahin Ramezany developed an XSS proof-of-concept exploit that he claims puts some 400 million Yahoo Mail users at risk of having their accounts taken over. Security researcher ...

Web giant Yahoo is copping flak from security researchers over allegations it pays just US$12.50 (A$13.40) for bug reports that can only be spent on Yahoo-branded merchandise. Swiss penetration ...

Reports about a malicious link compromising the security of several Yahoo! Mail accounts surfaced yesterday. The Next Web reports that a hacker... Reports about a malicious link compromising the ...

A zero-day vulnerability in yahoo.com that lets attackers hijack Yahoo! email accounts and redirect users to malicious Web sites offers a fascinating glimpse into the underground market for ...

Yahoo has patched a cross-site scripting (XSS) vulnerability capable of running in multiple browsers once Yahoo Mail users open spammed malicious links. The security hole is a Document Object Model ...

A Romanian hacker who calls himself "Pax" wants to teach Yahoo! a lesson. When your "Open Hack Day" attracts actual security-cracking hackers, treat them with a little more care. On Wednesday, Pax ...