June 11, 2024

119 views

1 min read

Ticketmaster’s Snowflake data breach was just one of 165

Editor Curtis Sims

Security researchers are reporting that a “significant volume of data” was stolen from hundreds of Snowflake cloud storage customers through compromised login credentials, with the incident linked to massive data breaches at Ticketmaster and Banco Santander.

Mandiant, a security company investigating data theft together with Snowflake, announced on Monday which traced the activity to a “financially motivated threat actor” identified as UNC5537. The two companies have notified at least 165 Snowflake client organizations that may have been compromised since the ongoing threat activity was discovered in April, with Mandiant saying its investigation found “no evidence to suggest” that Snowflake’s corporate environment was violated.

Recent data breaches in Ticketmaster, Santander Bankand subsidiary of LendingTree Quotation Assistant were linked to Snowflake cloud storage accounts used by companies. Official details about how the accounts were compromised have been scarce until now, with a previous third-party report being taken offline after Snowflake issued a statement claiming that the platform itself is not to blame.

Following its investigation, Mandiant says the as-yet-unidentified UNC5537 group is “systematically compromising” Snowflake customers using login credentials stolen by historical infostealer malware infections on systems not owned by Snowflake. Some of these credentials date back to 2020 and allowed UNC5537 to steal data from Snowflake client instances in an attempt to sell it on cybercriminal forums and extort victims.

Mandiant says the UNC5537 campaign resulted in “numerous successful compromises” due to poor security practices on affected accounts that failed to update stolen login credentials or utilize multi-factor authentication (MFA) or network whitelists. The list of victims, although largely unidentified, is also expected to grow, according to Mandiant, having assessed that UNC5337 will likely target additional platforms “in the near future.”

Source link

Post Views: 119

Support fearless, independent journalism

We are not owned by a billionaire or shareholders – our readers support us. Donate any amount over $2. BNC Global Media Group is a global news organization that delivers fearless investigative journalism to discerning readers like you! Help us to continue publishing daily.

Support us just once

We accept support of any size, at any time – you name it for $2 or more.

Cybersecurity - Tech

Massive outage at car dealership could be resolved by July 4th

July 1, 2024

9 views

1 min read

Car dealerships hit by outages following two cyberattacks against CDK Global in June may finally be able to use their systems again

Cybersecurity - Tech

How to manage deleted files on iOS, iPadOS and macOS

June 29, 2024

27 views

4 mins read

Most of the time, when you delete a file, it is not gone immediately – like recently discovered by a man whose

Cybersecurity - Tech

Google will resolve Android Find My Device network issues ‘in the coming weeks’

June 26, 2024

36 views

1 min read

In a statement provided to Mishaal Rahmana senior contributor to sites such as Android Authority It is Android Policethat they shared on

Cybersecurity - Tech

Preventing cyberattacks from China is DHS’s top infrastructure security priority

June 24, 2024

31 views

2 mins read

Combating “cyber and other threats posed by the People’s Republic of China” (PRC) is a top priority for the Department of Homeland

Cybersecurity - Tech

Massive outage at car dealership could be resolved by July 4th

July 1, 2024

Cybersecurity - Tech

How to manage deleted files on iOS, iPadOS and macOS

June 29, 2024

Cybersecurity - Tech

Google will resolve Android Find My Device network issues ‘in the coming weeks’

June 26, 2024

Cybersecurity - Tech

Preventing cyberattacks from China is DHS’s top infrastructure security priority

June 24, 2024

Cybersecurity - Tech

Car dealerships hit by major computer system outage

June 20, 2024

Goal ordered to stop AI training on Brazilian data

July 3, 2024

Tech

BBrazil’s national data protection authority has ordered Meta to stop using data from the country to train its AI models. Meta’s current privacy policy allows the company to

Northern Data evaluates AI unit IPO worth up to US$16 billion

July 2, 2024

Tech

(Bloomberg) — Northern Data AG is talking to potential advisers about a U.S. initial public offering of its combined artificial intelligence, cloud computing and data center businesses, which

Data Privacy Bill Markup Canceled After House Leadership Opposition

June 27, 2024

Technology

A House Energy and Commerce Committee markup of 11 bills, including a data privacy bill that was opposed by House Republican leaders, was canceled Thursday morning, shortly before

Rabbit R1 security issue reportedly leaves sensitive user data accessible to anyone

June 26, 2024

Tech

The team behind Rabbitude, the community-formed reverse engineering project for Rabbit R1he has revealed find a security issue in the company’s code that leaves users’ confidential information accessible

Federal data privacy laws gain support in US Congress, but critics remain

June 26, 2024

Politics

By Moira Warburton WASHINGTON (Reuters) – The push for the United States’ first major data privacy legislation has bipartisan support in a divided Congress ahead of a House

Nvidia short sellers make $5 billion from three-day sales, data shows

June 25, 2024

Weather

(Reuters) – Nvidia short sellers have raked in nearly $5 billion in paper profits from the AI chip designer’s sharp sell-off over the past three sessions, according to

Drivers will receive a one-time payment worth up to $5,250 for their data breach settlement – check if you’re eligible

June 24, 2024

Motors

DRIVERS only have days left to claim a check worth up to $5,250 in a major settlement, as long as they purchased a vehicle from a certain dealership

Investigation into Russian hack of London hospitals could take weeks amid concerns about online data dump

June 22, 2024

Health news

LONDON – An investigation into a ransomware attack earlier this month on London hospitals by Russian group Qilin could take weeks to complete, the country’s state-run National Health

Woman alleges breach of contract after boyfriend doesn’t take her to the airport

June 21, 2024

Is it a “breach of contract” if someone says they will take you to the airport and then doesn’t show up? That’s what a woman in New Zealand

Shift Healthcare Industry to Start Notifying Customers Who Have Had Data Exposed in Cyberattacks

June 20, 2024

Health news

Change Healthcare is beginning to notify hospitals, insurers and other customers that they may have had patient information exposed in a massive cyber attack. The company also said

Americans Have Hours Left to Get Their $11,500 Payout From Their $2.45 Million Data Breach Settlement — Check If You’re Eligible

June 19, 2024

Retail

A DEBT collection agency has agreed to pay a total of $2.45 million for a data breach. Applications to receive payments worth up to $11,500 close today. 1

AMD is investigating allegations of data stolen from the company

June 18, 2024

Cybersecurity - Tech

AMD is investigating a possible cyber attack. A threat actor known by the pseudonym “IntelBroker” is selling data it claims was obtained from an AMD.com breach this month,

Voyager 1 sends back science data from more than 15 billion miles away after NASA correction

June 18, 2024

Science

Sign up for CNN’s Wonder Theory science newsletter. Explore the universe with news about fascinating discoveries, scientific breakthroughs and more. The Voyager 1 spacecraft is sending back a

CNN Data Reporter ‘Speechless’ by New Donald Trump-Joe Biden Poll: ‘Damn, Guys!’

June 18, 2024

Climate change

There was shock on CNN with the way the former president donald trump is polling well among Black voters ahead of the 2024 presidential election. On Monday, the

Oil Prices Fall on Weaker US Consumer Demand Ahead of China Data

June 17, 2024

Tech

By Colleen Howe Oil prices fell in early Asian trading on Monday after a survey on Friday showed weaker consumer demand in the US and as traders awaited

Shocking list of apps secretly tracking drivers and accumulating ‘driving scores’ – insurers even buy the data

June 15, 2024

Motors

AUTOMAKERS that equip modern cars with internet connectivity are collecting data about how you drive – it could make insurance cheaper. However, others argue that data availability is

Vermont governor vetoes data privacy bill

June 14, 2024

The governor of Vermont vetoed a broad data privacy law This would have been one of the country’s strongest crackdowns on companies’ use of personal data online, allowing

Snowflake to Close Investigation into Cyberattacks Targeting Customers

June 13, 2024

Tech

(Bloomberg) — Snowflake Inc. plans to wrap up its own investigation this week into a hacking campaign that netted up to 165 of its customers. Bloomberg’s Most Read

See how Apple’s AI model tries to keep your data private

June 13, 2024

Apple

At WWDC on Monday, Apple unveiled Apple Intelligence, a suite of features that bring generative AI tools like rewriting a draft email, summarizing notifications, and creating custom emojis

Meta faces complaint over AI training on user data

June 13, 2024

Tech

June 13, 2024, 4:15 am EDT Meta Platforms Inc. has been hit with a Norwegian complaint over its plans to use images and user posts on Facebook and

Google partners with Nevada utility for geothermal power for data centers

June 13, 2024

Tech

NEW YORK (Reuters) – Google has signed a deal with electric utility Berkshire Hathaway NV Energy to power its Nevada data centers with advanced geothermal electricity, the U.S.

How AI is driving the boom in data centers and energy demand

June 12, 2024

Tech

WWhile AI could change the world in many unforeseen ways, it is already having a huge impact: a voracious consumption of energy. Generative AI does not simply float

FBI data shows sharp drop in violent crimes, but the slope is questioned

June 11, 2024

The Biden administration is taking credit for the sharp drop in violent crimes across the country earlier this year, but one expert warns that the drops in FBI

FBI data shows sharp drop in violent crimes, but the slope is questioned

June 11, 2024

Health news

The Biden administration is taking credit for the sharp drop in violent crimes across the country earlier this year, but one expert warns that the drops in FBI

Genetics testing company 23andMe investigated over data breach | World News

June 10, 2024

Watchdogs in the UK and Canada have launched a joint investigation into a data breach at a DNA testing company. The Information Commissioner’s Office (ICO) and the Office

Hours left to claim up to $12,125 of $3.53 million data breach settlement – there are two payment options, but you need proof

June 10, 2024

News money

AMERICANS can claim up to $12,125 thanks to a massive data breach settlement. Sovos Compliance will pay $3.53 million to resolve claims that it failed to prevent a

Inflation data in Brazil will show acceleration in May

June 10, 2024

World

By Gabriel Burin (Reuters) – Brazil’s consumer price data for May will likely show an acceleration in inflation, reflecting damage from recent disastrous floods in the south, according

This week’s inflation data could help determine Fed’s timeline for rate cuts

June 10, 2024

WASHINGTON – After Federal Reserve officials meet this week, a statement they will issue could suggest they have seen significant changes progress on inflation this year – a

Border Hackers Threaten to Release Private Data of 750,000 Customers

June 10, 2024

Cybersecurity - Tech

Frontier Communications revealed that information from more than 750,000 customers — including full names and Social Security numbers — was exposed in a data breach following a cyberattack

Oil falls on dollar strength due to US jobs data

June 10, 2024

Tech

By Florence Tan SINGAPORE (Reuters) – Oil prices fell for a second straight session on Monday, weighed down by a firmer dollar, as expectations of interest rate cuts