May 31, 2024 at 05:56PM
Hudson Rock analysts suspect that Snowflake was breached, leading to the theft of data from Ticketmaster, Santander, and potentially others. Sales of purported stolen data have been reported, including customer records and employee details. Snowflake denies its security was compromised, attributing breaches to customer login credentials being exposed in unrelated attacks. Snowflake claims its system was not the source of the leaked data.
From the meeting notes, the key takeaways are as follows:
– Snowflake, a cloud storage provider, is accused of being compromised and used as a platform to steal data from organizations such as Ticketmaster and Santander.
– The hacker, known as ShinyHunters, is reportedly offering stolen data for sale, including information on hundreds of millions of customers from Ticketmaster and millions of account holders from Santander.
– Hudson Rock claims that data from Ticketmaster, Santander, and potentially other organizations was stolen from Snowflake. They allege that the cyber-heist was accomplished using a Snowflake employee’s login details acquired through malware, and Snowflake’s access management system was bypassed.
– However, Snowflake denies these allegations, claiming that any data taken from its servers was through customers’ individual cloud accounts, using their stolen login information, and not due to any vulnerability or misconfiguration on Snowflake’s end.
– There is a discrepancy between Hudson Rock’s claims and Snowflake’s denial, and further investigation or clarification may be needed to determine the truth in this matter.
These takeaways outline the conflicting narratives regarding the security breach and data theft, raising the need for further investigation and verification of the claims made by both Hudson Rock and Snowflake.