Cloud Security Data Protection News

Snowflake and Ticketmaster Breaches: Credential Theft and Data Leaks Under Scrutiny

Snowflake has warned that a targeted credential theft campaign is affecting a limited number of its cloud customers, with threat actors using stolen credentials obtained through infostealing malware to access accounts with single-factor authentication. The company, along with CrowdStrike and Mandiant, has found no evidence of a platform vulnerability or compromised Snowflake personnel credentials. Organizations are urged to enable multi-factor authentication and restrict network traffic to trusted locations. The U.S. CISA and Australia's ACSC have issued similar advisories following the spike in malicious activity.