The bash / Shellshock exploit hit her game servers Yahoo. The company says no data was leaked by its users.
The exploits were first discovered by security researcher Jonathan Hall. Hall discovered two Yahoo Games servers that had been tampered with. When Yahoo came into contact with her SecurityWeek issued the following statement:
“A security flaw, called Shellshock, that could expose vulnerabilities on multiple web servers detected on September 24 As soon as we became aware of the issue, we immediately began patching our systems and are closely monitoring networks us. Last night, we isolated a few of our servers and at this time we have no evidence that user data has been leaked. We are focused on providing the safest experience for our users around the world and are constantly working to protect our users' data.”
The bash/Shellshock exploit is a Unix SSH security issue that allows hackers to gain rights to computers, or servers through the command line. With the announcement of the vulnerability, all companies rushed to patch their servers. Apparently, Yahoo was not one of them.
Let's remind you that the company is not known for its security, as there are constantly new reports of a service violation.