Yahoo data breach is investigated in Germany, as concerns rise across Europe

27th October 2016. By Vesela Gladicheva

An extensive security hack that targeted Yahoo in 2014 is under investigation in the southern Germany state of Bavaria, MLex has learned.

Germany is the second EU country to probe the tech giant, after Britain’s privacy regulator started scrutinizing the breach days after last month Yahoo revealed the hack had taken place.

The Sunnyvale, California-based company said on Sept. 22 that the hack targeted at least 500 million user accounts around the world and went undetected from 2014 until last month.

Yahoo’s German office is in Munich, Bavaria’s capital city, and the Bavarian watchdog is overseeing its local operations.

The Bavarian Data Protection Authority hasn’t yet announced its probe publically.

The company has registered offices in nine European countries, including Britain, France, Germany and Spain and could potentially come under scrutiny in all of them. Its European headquarters are in Ireland.

The Estonian Data Protection Inspectorate told MLex that it was “highly concerned” about the hack, and Slovakia’s privacy regulator said it was “examining its jurisdiction.”

An umbrella group of European data-protection authorities plans to make a statement on Yahoo’s data-breach soon.

Receive MLex Editor's Picks in Your Inbox

Complete this form to receive emails from MLex with selected highlights from our global coverage of regulatory risk and opportunity, as well as upcoming events, special reports and exclusive interviews.