Security News > 2021 > February > Yandex Employee Caught Selling Access to Users' Email Inboxes
Russian Dutch-domiciled search engine, ride-hailing and email service provider Yandex on Friday disclosed a data breach that compromised 4,887 email accounts of its users.
The company blamed the incident on an unnamed employee who had been providing unauthorized access to the users' mailboxes for personal gain.
"The employee was one of three system administrators with the necessary access rights to provide technical support for the service," Yandex said in a statement.
It's not immediately clear when the breach occurred or when the employee began offering unauthorized access to third-parties.
"A thorough internal investigation of the incident is under way, and Yandex will be making changes to administrative access procedures," the company said.
In October last year, Amazon fired an employee for sharing customers' names and email addresses with a third-party.