Security News > 2021 > February > Yandex Data Breach Exposes 4K+ Email Accounts

Yandex - one of Europe's largest internet companies - is warning of a data breach that compromised 4,887 email accounts.

The company found that a Yandex employee had been providing unauthorized access to users' mailboxes "For personal gain." This employee was one of three system administrators, who had the access privileges to provide technical support for mailboxes, said Yandex.

Threatpost has reached out to Yandex for further comment on the timeline of the data breach - including when the unauthorized access to email accounts began, when the breach was discovered, and who was able to access the compromised accounts.

Insider threats can be non-malicious - such as a mistake by an employee that leads personal data being exposed, for instance.

In a recent January case a former ADT employee was caught adding his personal email address to the accounts of attractive women, so he could have around-the-clock access to their most private moments.

In December, a former Cisco Systems employee was sentenced to two years in jail, after hacking into the networking company's cloud infrastructure and deleting 16,000 Webex Teams accounts in 2018.

News URL

https://threatpost.com/yandex-data-breach-email-accounts/163960/