The Ever-Snowballing Snowflake Breach: A Closer Examination
Snowflake's Breach Turns into a Major Data Security Concern
The Snowflake breach, initially targeting several customer accounts, has escalated into one of the largest data breaches in recent history. Cloud storage firm Snowflake revealed that malicious actors have been attempting to access customer accounts using stolen login details. Cybersecurity firms CrowdStrike and Mandiant have been employed to investigate the incident, and Snowflake has stated that there is no evidence of the breach being caused by compromised credentials of current or former Snowflake personnel.
Linked Data Breaches at Ticketmaster and Santander
Following Snowflake's initial announcement, cybercriminals have claimed to be selling stolen data from two additional major firms, Ticketmaster and Santander, alleging that the information was taken from Snowflake accounts. Ticketmaster has directly linked the incident to Snowflake, while Santander has acknowledged unauthorized access to one of its databases "hosted by a third-party provider." Neither company has confirmed the extent of the breaches.
Unclear Origins, High-Priced Data, and a Lesson on Interdependence
Little information exists about the Sp1d3r account advertising data on BreachForums, the notorious cybercrime marketplace. It remains unclear whether ShinyHunters, the owners of BreachForums, obtained the data from another source or directly from victims' Snowflake accounts. The 2 terabytes of alleged LendingTree and QuoteWizard data is reportedly for sale for $2 million, while 3 TB of data allegedly from Advance Auto Parts is priced at $1.5 million. This highlights how interconnected companies can be when relying on products and services from third-party providers.
.png)
0 Comments