Yandex browser, a browser by a russian government owned tech company, is allegedly installing an HTTPS root certificate into windows when installed/updates, allowing them to peek into and edit all your encrypted browsing traffic (not just in their browser)

extra info and instructions on how to check for the certificate, in russian, here: https://xn--r1a.website/Dark2weboriginal/13375