Yahoo’s Associated Content Hacked?

Update: TrustedSec has a write up:

Earlier today a group called “D33Ds Company” released a large (17MB) dump from a Yahoo server. The dump includes information from a MySQL database, and the email addresses and passwords from over 450k users. Based on some of the emails and the naming of the tables, I suspect that the data is from Associated Content – a company that Yahoo bought in 2010, and closed in 2011 – replacing it with Yahoo Voices.

The group that released the dump “censored” the name of the server in question, but they neglected to clear the HOSTNAME field in the MySQL information, exposing the server name:

I’ve used the great Pipal script to perform some analysis on the passwords: