According to a recent report one or more western intelligence agencies had attacked Russian search engine Yandex to spy on its users. The report claimed that the attack took place in 2018 using a rare malware called Regin in an attempt to monitor user accounts hosted by the company.
In case you weren’t aware, the malware is known to be used by intelligence-sharing alliance of the United States, Britain, Australia, New Zealand and Canada according to sources. While intelligence agencies didn’t acknowledge, Yandex revealed that it had experienced an attack last year between October and November. A spokesperson from the company said, “This particular attack was detected at a very early stage by the Yandex security team. It was fully neutralized before any damage was done. Yandex security team’s response ensured that no user data was compromised by the attack.”
According to Yandex, shortly after the attack, the company contacted Kaspersky which found that the attack was targeting developers at Yandex to understand how the search engine authenticates users’ accounts to allow the attackers to impersonate users and gain access to private messages.
However, the Regin code found in the systems were newer than the one disclosed back in 2014 after Edward Snowden revealed the malware as a ‘Five Eyes’ utility at the time.