Home / Early Warning / Cybersecurity Highlights / Insider discovered at Yandex

Insider discovered at Yandex

02/12/2021

Russian specialist of Internet services and products, Yandex, has reported the presence of an insider among its staff of system administrators who has compromised multiple mailboxes.

The employee in question, who was discovered during a routine internal investigation and who had the required access rights to provide technical support for the mail service, provided unauthorised access to at least 4,887 user mailboxes in exchange for personal benefits.

Yandex has confirmed that no financial data has been compromised and that access to the affected mailboxes has been restricted.

Investigations are continuing while the affected owners are being alerted and suggested to change their passwords, and new security policies are being reworked for the company.