What is the official website of Yandex Cloud ?

The official website of Yandex Cloud is https://cloud.yandex.com/en.

What is Yandex Cloud's cybersecurity risk score?

Yandex Cloud has an AI-generated cybersecurity risk score of 754 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Yandex Cloud experienced?

According to Rankiteo, Yandex Cloud currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Yandex Cloud been affected by any supply chain cyber incidents ?

According to Rankiteo, Yandex Cloud has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Yandex Cloud have SOC 2 Type 1 certification ?

According to Rankiteo, Yandex Cloud is not certified under SOC 2 Type 1.

Does Yandex Cloud have SOC 2 Type 2 certification ?

According to Rankiteo, Yandex Cloud does not hold a SOC 2 Type 2 certification.

Does Yandex Cloud comply with GDPR ?

According to Rankiteo, Yandex Cloud is not listed as GDPR compliant.

Does Yandex Cloud have PCI DSS certification ?

According to Rankiteo, Yandex Cloud does not currently maintain PCI DSS compliance.

Does Yandex Cloud comply with HIPAA ?

According to Rankiteo, Yandex Cloud is not compliant with HIPAA regulations.

Does Yandex Cloud have ISO 27001 certification ?

According to Rankiteo,Yandex Cloud is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Yandex Cloud operate in ?

Yandex Cloud operates primarily in the IT Services and IT Consulting industry.

How many employees does Yandex Cloud have ?

Yandex Cloud employs approximately 514 people worldwide.

Does Yandex Cloud own any subsidiaries ?

Yandex Cloud presently has no subsidiaries across any sectors.

How many LinkedIn followers does Yandex Cloud have ?

Yandex Cloud's official LinkedIn profile has approximately 8,937 followers.

What is the NAICS classification code for Yandex Cloud ?

Yandex Cloud is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.

Does Yandex Cloud have a Crunchbase profile ?

No, Yandex Cloud does not have a profile on Crunchbase.

Does Yandex Cloud have a LinkedIn profile ?

Yes, Yandex Cloud maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/yandexcloud.

How many cybersecurity incidents has Yandex Cloud experienced ?

As of June 7, 2026, Rankiteo reports that Yandex Cloud has experienced 3 cybersecurity incidents.

How many peer or competitor companies does Yandex Cloud have ?

Yandex Cloud has an estimated 40,591 peer or competitor companies worldwide.

What types of cybersecurity incidents has Yandex Cloud faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Data Leak and Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Yandex Cloud

Boost Score +25 with badge (5 left)

754

/1000

Fair

779

/1000

Fair

Yandex Cloud Vendor Cyber Rating & Cyber Score

yandex.com

Add Your Compliance Badge

Yandex Cloud is a public cloud platform where companies can create and develop projects using Yandex's scalable computing power, advanced technologies, and infrastructure.

Yandex Cloud A.I CyberSecurity Scoring

Scoring History

Yandex Cloud

Yandex Cloud CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Yandex Cloud

Breach

100

8/2024

YAN000081124

Yandex Cloud

Breach

01/2023

YAN224381023

Yandex Cloud

Data Leak

2/2022

YAN21827123

Loading…

A.I.

Yandex Cloud Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Yandex Cloud

Incidents vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for Yandex Cloud in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Yandex Cloud in 2026.

Incident Types Yandex Cloud vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for Yandex Cloud in 2026.

Incident History - Yandex Cloud (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Yandex Cloud Subsidiaries

Yandex Cloud

IT Services and IT Consulting

Website: https://cloud.yandex.com/en

Company Size: 201-500 employees

YandexTechnology, Information and Internet

Yandex.MetricaTechnology, Information and Internet

Yandex 360IT Services and IT Consulting

AppMetricaТехнологии, информационные средства и Интернет

Yandex.TaxiTechnology, Information and Internet

Loading…

Yandex Cloud Similar Companies

Eviden

eviden.com

Eviden is the Atos Group brand for hardware and software products with c. € 1 billion in revenue, operating in 36 countries and comprising four business units: advanced computing, cybersecurity products, mission-critical systems and vision AI. As a next-generation technology leader, Eviden offers a unique combination of hardware and software technologies for businesses, public sector and defense organizations and research institutions, helping them to create value out of their data. Bringing together more than 4,500 world-class talents and holding more than 2,100 patents, Eviden provides a strong portfolio of innovative and eco-efficient solutions in AI, computing, security, data and applications.

Hitachi

hitachi.com

For over 100 years, Hitachi has been committed to developing innovations that improve lives. Today, this means creating superior technology and products that balance environment, well-being, and economic growth. We integrate IT, operational technology (OT), and products to transform critical infrastructure and industrial systems. Through Hitachi’s process for creating value from data, which we call Lumada, we combine rich industry insight and infrastructure expertise to create measurable, positive change. We operate across four global sectors – Digital Systems & Services, Energy, Mobility, and Connective Industries – plus a Strategic Social Innovation Business Unit developing next-generation solutions. With over 280,000 employees across 618 consolidated subsidiaries in over 140 countries, we partner with our customers to create a harmonized society and build what’s next for people and planet.

NEC Corporation

cb nec.com

NEC Corporation has established itself as a leader in the integration of IT and network technologies while promoting the brand statement of “Orchestrating a brighter world.” NEC enables businesses and communities to adapt to rapid changes taking place in both society and the market as it provides for the social values of safety, security, fairness and efficiency to promote a more sustainable world where everyone has the chance to reach their full potential. For more information, visit NEC at http://www.nec.com NEC's Strengths and Competencies ・Named "2017 Global 100 Most Sustainable Corporations in the World" an Index Listing the World’s 100 Most Sustainable Corporations ・Named one of the "World's Top 100 Most Innovative Organizations for 2016" by Thomson Reuters ・Face recognition technology achieved No. 1 in the recent Face in Video Evaluation (FIVE, *1) testing performed by the U.S. National Institute of Standards and Technology (NIST) (*2) (*1) https://www.nist.gov/programs-projects/face-video-evaluation-five (*2) Results shown from the Face In Video Evaluation (FIVE), the Multiple Biometric Grand Challenge (MBGC), the Multiple Biometric Evaluation (MBE) and the Face Recognition Vendor Test (FRVT) do not constitute endorsement of any particular product by the U.S. Government. ** Please note that we reserve the right to delete any comments posted on NEC Corporation’s LinkedIn page that are deemed extremely defamatory or libelous to any company or individual, or that may be offensive to others.

Gainwell Technologies

gainwelltechnologies.com

For 50 years, our nation’s federal Medicaid program has worked to improve the health, safety and well-being of America’s most vulnerable populations: low-income families, women and children, seniors, and those with disabilities. With positive health and cost outcomes that pierce inequities and impact economies, the success of these programs is inextricably tied to the prosperity of communities, individual states and the nation as a whole. We think that demands respect and, more importantly, is deserving of a lifetime commitment from innovators who can help those who operate within and around health and human services evolve — in any market at any stage. At Gainwell Technologies, that’s our sole focus. Built across more than five decades, Gainwell has intentionally seized opportunities to advance its digitally enabled services to meet agencies, health plans and MCOs where they are on their modernization journeys and propel them into the future of public health. Our commitment to innovation, deep experience and ability to leverage insights from customers across 50 states has allowed us to expand on next-generation, cloud-enabled technologies. Today, Gainwell offers one of the most comprehensive suites of scalable services and solutions on the market — all proven to deliver cost savings, better patient outcomes and an improved provider experience. Equally important to our expanding technologies and results: We bring ideas that bring policies to life.

Hexaware Technologies

cb hexaware.com

At Hexaware, we're not just a global technology and business process services company; we're a community of 31,600+ Hexawarians dedicated to one singular purpose: creating smiles through the power of great people and technology. With a presence in 58 offices across 28 countries, we empower enterprises worldwide to embark on their digital transformation journey with unparalleled scale and speed. As an employer, we're more than just a workplace. We put our people first, foster diversity and inclusivity, and prioritize their growth through robust learning and development programs. Our culture is a canvas for innovation as we work toward our shared vision of becoming the world’s most loved digital transformation partner. Exciting, isn’t it? Visit www.hexaware.com to join us in embracing the magic of technology, as we passionately advocate for its potential to transform lives today and shape a brighter future. Together, we'll make the digital world a better place.

Allianz Technology

allianz.com

With its headquarters in Munich, Germany, Allianz Technology is Allianz's global IT service provider and delivers IT solutions that drive the group's digitalization. With more than 11,000 employees in more than 20 countries around the world, Allianz Technology is tasked to run, optimize, transform, and innovate the infrastructure, applications, and services together with Allianz companies to co-create the best customer experience. We service the entire spectrum of digitalization - from one of the industry's largest IT infrastructure projects that spans data centres, networks, and security, to application platforms ranging from workplace services to digital interaction. In short: We deliver comprehensive end-to-end IT solutions for Allianz in the digital age. We are the backbone of Allianz.

Nagarro

cb nagarro.com

Nagarro helps future-proof your business through a forward-thinking, fluidic, and CARING mindset. We excel at digital engineering and help our clients become human-centric, digital-first organizations, augmenting their ability to be responsive, efficient, intimate, creative, and sustainable. Today, we are 18,000+ experts across 38 countries, forming a Nation of Nagarrians, ready to help our customers succeed.

Zoom

zoom.com

Bring teams together, reimagine workspaces, engage new audiences, and delight your customers –– all on the Zoom AI-first work platform you know and love. 💙 Zoomies help people stay connected so they can get more done together. We set out on a mission to make video communications frictionless and secure by building the world’s best video product for the enterprise, but we didn’t stop there. With products like AI Companion, Team Chat, Contact Center, Phone, Events, Rooms, Webinar, Contact Center and more, we bring innovation to a wide variety of customers, from the conference room to the classroom, from doctor’s offices to financial institutions to government agencies, from global brands to small businesses. We do what we do because of our core value of Care: care for our community, our customers, our company, our teammates, and ourselves. Our global employees help our customers meet happier, communicate better, and create meaningful connections the world over. Zoomies are problem-solvers and self-starters, working hard to get results and moving quickly to design solutions with our customers and users in mind. Here, you'll find room to grow with opportunities to stretch your skills and advance your career in a collaborative, growth-focused environment. Learn more about careers at Zoom by visiting our careers site: https://careers.zoom.us/home

NTT DATA Business Solutions

nttdata-solutions.com

We understand the business of our clients and know what it takes to transform it into the future. At NTT DATA Business Solutions, we drive innovation – from advisory and implementation to managed services and beyond. With SAP at our core and a powerful ecosystem of partners, we continuously improve solutions and technology to make them work for companies – and for their people. Aiming to transform, grow and become more successful? We provide you with more than in-depth expertise for SAP solutions: As your passionate partner, we connect your business opportunities with the latest technologies – and offer you a unique approach to get the job done as smoothly as possible. Our close ties to our partners give you access to innovative solutions and developments. Being part of the global NTT DATA group enables us to master any scope of project. With operations in more than 30 countries, we have enabled thousands of companies become more efficient and effective during the last three decades. Our more than 16,000 experts around the world will also accompany you on your journey toward a truly intelligent enterprise – wherever you want to start!

Loading…

NEWS

Yandex Cloud CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 25, 2026 08:00 AM

Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware

Cybersecurity researchers have discovered four malicious NuGet packages that are designed to target ASP.NET web application developers to...

Read Article

February 18, 2026 08:00 AM

Yandex.Disk Review 2026 [Is It Safe For File-Backup?]

Yandex is a cloud storage service and fully fledged workstation. Read this Yandex.disk review to see if it's on par with the competition.

Read Article

February 09, 2026 08:00 AM

ScarCruft Abuses Legitimate Cloud Services for C2 and OLE-based Chain to Drop Malware

ScarCruft shifted from LNK attacks to OLE-based HWP documents to deploy ROKRAT in memory, using cloud services for C2.

Read Article

February 09, 2026 08:00 AM

ScarCruft Exploits Trusted Cloud Services and OLE Documents to Deliver Malware

The North Korean-backed advanced persistent threat (APT) group known as ScarCruft has significantly evolved its attack techniques.

Read Article

December 19, 2025 08:00 AM

Cloud Atlas Exploits Office Vulnerabilities to Execute Malicious Code

The Cloud Atlas threat group, active since 2014, continues to pose a significant risk to organizations in Eastern Europe and Central Asia...

Read Article

December 18, 2025 08:00 AM

China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware

ESET reports China-aligned LongNosedGoblin spying on government networks in Southeast Asia & Japan using Group Policy and cloud-based...

Read Article

November 24, 2025 08:00 AM

APT31 sets sights on Russian IT sector

Russian IT firms, particularly those contracted by the government, have been subjected to a stealthy wave of attacks from Chinese...

Read Article

November 22, 2025 08:00 AM

China-Linked APT31 Launches Stealthy Cyberattacks on Russian IT Using Cloud Services

The China-linked advanced persistent threat (APT) group known as APT31 has been attributed to cyber attacks targeting the Russian...

Read Article

November 21, 2025 08:00 AM

China’s APT31 linked to hacks on Russian tech firms

The China-linked hacking group known as APT31 infiltrated Russia's technology sector for years and quietly exfiltrated data from companies...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-26422

SUMMARY

clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 8.4)

cvss3

Base Score: 8.4

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.5

REFERENCES

CVE-2026-11441

SUMMARY

A vulnerability was identified in theonedev onedev up to 15.0.5. This vulnerability affects the function canAccessIssue of the file /issues/ of the component Pull Request Handler. Such manipulation of the argument issue leads to improper authorization. It is possible to launch the attack remotely. Upgrading to version 15.0.6 is able to resolve this issue. It is advisable to upgrade the affected component.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-11440

SUMMARY

A vulnerability was determined in theonedev onedev up to 15.0.5. This affects an unknown part of the file /repositories/{projectId}/default-branch of the component REST API. This manipulation of the argument project.defaultBranch causes improper authorization. It is possible to initiate the attack remotely. Upgrading to version 15.0.6 is able to mitigate this issue. Upgrading the affected component is advised.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-11439

SUMMARY

A vulnerability was found in theonedev onedev up to 15.0.5. Affected by this issue is some unknown functionality of the file /projects/ of the component Parent Project Handler. The manipulation of the argument project.parentId results in improper authorization. The attack may be performed from remote. Upgrading to version 15.0.6 can resolve this issue. It is recommended to upgrade the affected component.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-11438

SUMMARY

A vulnerability has been found in theonedev onedev up to 15.0.5. Affected by this vulnerability is an unknown functionality of the file /projects. The manipulation of the argument project.forkedFromId leads to improper authorization. The attack is possible to be carried out remotely. Upgrading to version 15.0.6 addresses this issue. Upgrading the affected component is recommended.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…