(Bloomberg) — Snowflake Inc. is trying to get its customers to impose stricter security controls while companies like Advanced Auto Parts Inc. and Live Nation Entertainment Inc.
Bloomberg’s Most Read
The cloud-based data analytics company said hackers targeted some of its customers’ accounts and used information-stealing malware or purchased credentials in an attempt to breach users who did not have multi-factor authentication set up. In a blog post Friday, the company said it is developing a plan that would require customers to take advanced security measures, such as establishing MFA, which requires someone to verify their identity in two or more ways.
The move comes a week after Ticketmaster owner Live Nation said it discovered “unauthorized activity” in a third-party cloud database containing company data and that someone was trying to sell purported customer data on the dark web. The ticket seller’s database was hosted on Snowflake, said a person familiar with the situation, who asked not to be identified because the information is not public.
A day later, the Australian government issued a warning about “increased cyber activity” involving Snowflake customers, saying it was aware of “successful compromises.” And on Friday, Advanced Auto Parts said it was investigating reports that the company was involved in a “Snowflake-related safety incident.” Axios previously reported Advanced Auto Parts’ statement.
The company said it was not responsible for the Live Nation data breach and that it was working with Google’s Mandiant cybersecurity unit and CrowdStrike Inc. When asked about statements from Advance Auto Parts and the Australian government, the company said up to posts on your website.
In its blog, Snowflake said the company has not identified evidence to suggest that the recent hacking activity was caused by a vulnerability in Snowflake’s platform.
A cybercriminal was offering to sell a trove of data on about 560 million Ticketmaster customers on the dark web, but Bloomberg News was unable to immediately verify the accuracy of the data.
Information-stealing malware has existed in one form or another for more than a decade. Hackers use these tools to compromise and collect data such as credit card numbers, web browser activity, and bank account information. Demand for this malware is increasing, with some criminals offering the tools through $250 monthly subscriptions, cyber firm Flashpoint Inc. said.
ShinyHunters claimed to be the gang behind the sale of the alleged Ticketmaster data. It is among several cybercrime groups with a history of attacking large organizations. The gang, which emerged in 2020, also claimed to have stolen data from Microsoft Corp., news site Mashable and clothing brand Bonobos in recent years.
–With help from Ashley Carman.
Bloomberg Businessweek Most Read
©2024 Bloomberg LP
