The Russian search service, indeed, knows how to find everything on the Web. But this time it turned out that Yandex itself last week allowed a reappearance of a vulnerability that gives out confidential personal data to any person. To do this, just enter in the search engine Yandex inurl: 0 inurl: b inurl: 1 inurl: c and the request itself. Thus, outsiders got access to the history of online orders, scans of documents (passports, driver’s licenses, insurance), tickets and bank card information. A Facebook leak was reported by search engine specialist Pavel Medvedev from Rush Agency. Such a vulnerability already appeared in 2011, then the problem in the Webasyst ShopScript3 engine was quickly resolved, but this time the company can’t cope with the “functionality” since July 12, and it still works with a failure. The trouble is that the distribution of confidential information is carried out not by small companies, but by large Russian companies, including Sberbank, VTB, Russian Railways, Aeroflot and other state and municipal institutions. Who will be punished (and whether it will be) for so much serious disclosure of personal data is unknown.