A hacker or hacking group known as D33Ds Company leaked the Yahoo passwords Wednesday. Yahoo said the database breach occurred Wednesday, and that it had already patched the vulnerability exploited by the attacker or attackers. Less than 5% of the Yahoo usernames published in breach were linked to a valid password. Most of the email addresses used (33%) were Yahoo accounts, followed by Gmail, Hotmail, AOL, Comcast, and MSN. The hackers behind the breach likely had access to more user-provided personal details.”]
Source: https://www.darkreading.com/attacks-breaches/yahoo-password-breach-new-risks