The security breaches that we posted about in 2016 resulted in a $350 million discount in Verizon’s purchase of Yahoo. It also resulted in Yahoo CEO being stripped of her 2016 annual bonus (up to $2 million). She also volunteered to surrender her 2017 equity grant (no less than $12 million). The board accepted her offer and she has requested that it be distributed among the Yahoo employees.
An interesting part of the article was a Gartner analyst comment that “security is often not on the top of a company’s agenda because it isn’t directly tied to revenue growth.”
If cybersecurity is not a top item on the board’s agenda for internet based companies, financial services, and other critical infrastructure companies, they’ll have a lot more to worry about than revenue growth.
I’m encouraged that Yahoo and even Marissa Mayer acknowledged her accountability in this breach. More needs to be done to hold executives accountable for cybersecurity at these major companies.
http://www.securityinfowatch.com/news/12311944/yahoo-ceo-marissa-mayer-stripped-of-bonus-after-probe-reveals-high-level-knowledge-of-huge-hack
They are at least trying to do something positive out of this unfortunate situation. It’s hard want to put blames on whoever in a situation like this for a company of Yahoo’s magnitude. Outsiders will never know and understand what really happened besides there was some sort of negligence, and as a result Yahoo got hacked. It’s complicated. It’s sad to see how Yahoo’s legacy summed up to what it is today.