Verizon discovered it during negotiations.

A cybersecurity researcher found it on a black market forum.

Yahoo's internal security team found it.

Yahoo announced it publicly.

Both used the same secure algorithm.

The first breach used MD5, the second used a more secure algorithm.

The second breach used MD5, the first used a more secure algorithm.

Neither breach used encryption.

The number of user accounts stolen.

The public relations impact.

The potential theft of Yahoo's intellectual property.

The cost of the acquisition.

They immediately secured all accounts.

They advised users to change their passwords.

They offered compensation to affected users.

They denied any breach occurred.

Users received free security software.

Users were unaffected.

Users were given new accounts.

Users experienced increased spam and identity theft.