May 31, 2024 at 01:36PM
A threat actor claimed to have breached Santander and Ticketmaster, stealing data from employee accounts at Snowflake, a cloud storage provider, with the intent to extort $20 million. Snowflake refuted the claims, attributing the breaches to poorly secured customer accounts. The company is investigating unauthorized access and advises customers to enable multi-factor authentication.
It appears that the meeting notes are regarding recent breaches involving Snowflake, a cloud storage company, and its customers. According to the notes, a threat actor claims to have gained access to data from multiple high-profile companies by hacking into a Snowflake employee’s account. They allegedly used these credentials to access customer accounts and exfiltrate data, potentially impacting numerous companies. The threat actor also attempted to extort Snowflake for $20 million by offering to sell back the stolen data.
In response, Snowflake has refuted these claims, stating that the breaches were the result of compromised customer accounts rather than any vulnerability or misconfiguration in their products. The company is advising customers to enable multi-factor authentication and has published a security bulletin with further guidance.
It’s also worth noting that entities such as Santander and Ticketmaster were mentioned in relation to using Snowflake’s cloud storage services and may be impacted by these breaches.
If you have any specific questions or require further information, please feel free to ask.