Yandex

Yandex

Yandex, a prominent Russian technology corporation, experienced a significant security breach involving a novel Android spyware named LianSpy. The malware targeted Russian users, covertly capturing screencasts, exfiltrating files, and harvesting sensitive user data such as call logs and app lists. LianSpy employed Yandex Cloud services to facilitate command and control communications, complicating efforts to detect and attribute the malware activity. The breach demonstrates the increasing sophistication of cyber threats, as well as the challenges organizations face in protecting user data against clandestine and advanced cyberespionage tactics.

Source: https://securityaffairs.com/166680/malware/new-android-spyware-lianspy-relies-on-yandex-cloud-to-avoid-detection.html

TPRM report: https://scoringcyber.rankiteo.com/company/yandex

"id": "yan000081124",
"linkid": "yandex",
"type": "Breach",
"date": "8/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Technology',
                        'location': 'Russia',
                        'name': 'Yandex',
                        'type': 'Technology Corporation'}],
 'attack_vector': 'Android Spyware',
 'data_breach': {'data_exfiltration': True,
                 'type_of_data_compromised': ['screencasts',
                                              'files',
                                              'call logs',
                                              'app lists']},
 'description': 'Yandex, a prominent Russian technology corporation, '
                'experienced a significant security breach involving a novel '
                'Android spyware named LianSpy. The malware targeted Russian '
                'users, covertly capturing screencasts, exfiltrating files, '
                'and harvesting sensitive user data such as call logs and app '
                'lists. LianSpy employed Yandex Cloud services to facilitate '
                'command and control communications, complicating efforts to '
                'detect and attribute the malware activity. The breach '
                'demonstrates the increasing sophistication of cyber threats, '
                'as well as the challenges organizations face in protecting '
                'user data against clandestine and advanced cyberespionage '
                'tactics.',
 'impact': {'data_compromised': ['screencasts',
                                 'files',
                                 'call logs',
                                 'app lists'],
            'systems_affected': ['Yandex Cloud services']},
 'motivation': 'Cyberespionage',
 'title': 'Yandex Security Breach by LianSpy Spyware',
 'type': 'Malware'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.