Media logo
Cybersecurity

Georgia fines Yandex taxi service for sharing user data with Russia

Photo via social media.
Photo via social media.

The Personal Data Protection Service of Georgia has fined Ridetech Georgia LLC, the company which provides the Yandex taxi apps, ₾4,000 ($1,500) for sharing the personal information of users and drivers in Georgia with Russia.

On Monday, the agency said they had discovered during an inspection that the Yandex GO app for passengers and the Yandex Pro app for drivers connected to servers in Russia as part of the process of verifying users had an internet connection. In doing so, the IP addresses of users were reportedly unlawfully transferred to the Russian servers.

On top of the fine, the agency ordered the company to terminate further data transfers.

They also noted that before the inspection, Ridetech Georgia had applied for permission to transfer personal data processed on the territory of Georgia to Russia, a request that was rejected. 

‘The Service […] considered that in the Russian Federation, there was no real expectation of adequate guarantees of the protection of the rights of the data subject, including the protection of the principle of data security’, their statement read.

Ridetech Georgia has said they will appeal the fine, BM.ge reported on Tuesday.

According to them, they ‘work in full compliance with Georgian legislation’. 

‘The rights of users of our services are our priority’, they stated. ‘To store data, we use reliable servers located in the European Union — a jurisdiction that, according to the Personal Data Protection Service of Georgia, provides adequate protection of Yandex Go user data’.

According to an article published last August by Meduza, the Russian Federal Security Service (FSB) would have access to the data of Yandex users abroad from 1 September 2023.

At the time of the article’s publication, Yandex denied the claim. They said that their taxi app and other apps used in EU countries were operated by a Dutch company that adhered to EU legislation, including the General Data Protection Regulation (GDPR).

Read in Armenian on CivilNet.

Related Articles

Armenian Government building. Image vis Factor.am
Armenia

Russian hackers reportedly attack Armenian government database

Avatar

Russian hackers have reportedly hacked into an Armenian government-operated database. Armenia has previously been the target of a number of cyberattacks by Russian hackers amidst an ongoing deterioration of its relations with Russia. Reports of the attack first emerged on Wednesday, with RFE/RL citing a Telegram post in a private, inaccessible channel allegedly run by a Russian hacking group that claimed to have successfully infiltrated the database using an FTP code transfer system. ‘The da

A screenshot purportedly of the Georgian President’s website published by Publika.
Cybersecurity

‘Russian hackers’ take down websites of Georgian media and president

Avatar

The websites of Georgia’s President and two leading TV stations have been temporarily taken offline in an apparent cyberattack by Russian hackers. The website of Georgian President Salome Zurabishvili was offline on Friday morning, with local media reporting that the site initially displayed a message attributing the attack to a Russian hacking network. Screenshots purportedly of the site showed the message ‘HACKED BY COZY BEAR SLAVA [glory to] RUSSIA’ on a black background with an image of

Illustration: Dato Parulava/OC Media.
Azerbaijan

Azerbaijani news outlet Mikroskop taken down by ransomware attack

I

Azerbaijani news outlet Mikroskop has been taken offline in an apparent ransomware attack, with its management speculating that the government could be behind the attack. Mikroskop’s website was taken down on Saturday with a message purportedly from the attackers appearing demanding 0.5 bitcoin ($13,000) to unblock the website. The website remained offline as of Monday morning.  The outlet’s co-founder, editor-in-chief Fatima Karimova, told OC Media that a hacker group was behind the attack.

An image of former Georgian President Mikheil Saakashvili was displayed on many of the hacked websites.
2019 Georgia Cyber Attack

Russian military intelligence ‘was behind’ October cyberattack in Georgia

Avatar

Russia’s military intelligence service, the GRU, was behind a massive cyberattack on Georgia in October 2019 that affected around 15,000 websites, British intelligence has alleged. The websites affected included those of major government institutions, broadcasters, online newspapers, and private businesses. Most of the hacked websites went offline or displayed a sliding image of a smiling former Georgian President Mikheil Saakashvili with the text: ‘I’ll be back’. [Read more about the cybera

Most Popular

Editor‘s Picks