Snowflake and Ticketmaster Breaches: Credential Theft and Data Leaks Under Scrutiny
TL;DR Summary
Snowflake has warned that a targeted credential theft campaign is affecting a limited number of its cloud customers, with threat actors using stolen credentials obtained through infostealing malware to access accounts with single-factor authentication. The company, along with CrowdStrike and Mandiant, has found no evidence of a platform vulnerability or compromised Snowflake personnel credentials. Organizations are urged to enable multi-factor authentication and restrict network traffic to trusted locations. The U.S. CISA and Australia's ACSC have issued similar advisories following the spike in malicious activity.
Topics:business#cloud-customers#cloud-security-data-protection#credential-theft#cybersecurity#multi-factor-authentication#snowflake
- Snowflake Warns: Targeted Credential Theft Campaign Hits Cloud Customers The Hacker News
- Ticketmaster, Live Nation sued: Millions of customers' personal data listed on black market, suit claims USA TODAY
- Mysterious corporate breaches could link to Snowflake accounts Axios
- Snowflake says there's no evidence attackers breached its platform to hack Ticketmaster The Verge
- Ticketmaster Breach: What We Know So Far CNET
Reading Insights
Total Reads
0
Unique Readers
2
Time Saved
2 min
vs 3 min read
Condensed
80%
414 → 84 words
Want the full story? Read the original article
Read on The Hacker News