Yandex Dump

In September 2014 a significant database containing approximately one million credentials associated with Yandex accounts was leaked online. This incident occurred nearly simultaneously with a similar leak affecting Mail.ru accounts. Yandex representatives clarified that their internal systems were not compromised through a direct hack. Instead the data collection was likely the result of widespread phishing campaigns and malware targeting individual users over a long period. The leaked files contained plain text usernames and passwords allowing unauthorized access to various services within the Yandex ecosystem for those users who had not updated their security settings or enabled two factor authentication.