Qof aan la garanayn ayaa lagu daabacay goobta guud (oo ku taal golaha BreachForums) kayd ka kooban waxa ku jira kaydka gudaha Git ee Yandex. Diidmada ayaa la sheegay inay dhacday Julaay 2022 (dhammaan faylalka gudaha ku jira waxay taarikhaysan yihiin Febraayo 24, 2022). Kaydka, oo cabbirkiisu yahay 44.71 GB, waxaa ku jira jeexyo kayd ah oo leh koodhka adeegyada 79 iyo mashaariicda shirkadda, oo ay ku jiraan mashiinka raadinta (frontend iyo backend), bogga bot, Yandex Metrika madal falanqaynta shabakadda, khariidadaha Yandex nidaamka, Kaaliyaha codka Alice, adeegyada taageerada nidaamka macluumaadka, Yandex Taxi, Yandex Phone, Yandex Direct platform advertising, Yandex Mail mail, Yandex Disk kaydinta, shebekadda gudbinta content, suuqa Yandex Market, Yandex360 adeegyada ganacsiga, Yandex Cloud Cloud platform iyo Yandex Pay nidaamka lacag bixinta.
Yandex ayaa xaqiijisay daadinta, laakiin wuxuu sheegay inaysan ahayn jabsi. Waxa kale oo la caddeeyey in daadintu ay daboosho koodka oo keliya oo aanu saamaynaynin xogta iyo macluumaadka shakhsi ahaaneed. Si kastaba ha ahaatee, inta lagu guda jiro falanqaynta waxa ku jira kaydka, xamaasadu waxay hore u aqoonsadeen dhowr furayaal API ah oo la sheegay in loo adeegsaday habka tijaabada, laakiin aan loo isticmaalin goobaha wax soo saarka. Koodhka waxaa loo daabacay qaab jeex ah oo ka mid ah waxa ku jira kaydka, iyada oo aan lahayn taariikh isbedel ah. Marka lagu daro koodka, kaydku waxa kale oo uu ka kooban yahay dukumeenti gudaha ah oo sheegaysa xidhiidhada adeegyada shabakadda ee shirkadda intranetka.
Source: opennet.ru
