Yandex discovered a data breach where one of its employees provided unauthorised access to user mailboxes for personal gain.
Yandex discovered a data breach where one of its employees provided unauthorised access to user mailboxes for personal gain.
Yandex is one of Europe’s largest internet companies and is the most-used search engine in Russia. Yandex provides internet-related products and services, including mobile applications, online advertising, e-commerce and much more.
The company discovered the breach during a routine screening by its internal security team.
The employee was one of the three system administrators having the necessary access rights to provide technical support for the service.
The employee providedunauthorised access to users, resulting in the compromise of 4,887 mailboxes.
The company states that the administrator did it `for personal gain,’ having financial motivation.
The company did not disclose the name of the unfaithful employee, and no payment details were compromised.
“Yandex’s security team has already blocked unauthorised access to the compromised mailboxes. We have contacted the mailbox owners to alert them about the breach, and they have been informed of the need to change their account passwords, ” reads the press release.
“A thorough internal investigation of the incident is underway, and Yandex will be making changes to administrative access procedures. This will help minimise the potential for individuals to compromise the security of user data in future. The company has also contacted law enforcement.” concludes the company.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?