June 21, 2024 at 03:08PM UNC5537, a cybercriminal group, has recently targeted several companies, stealing millions of customer records and demanding large ransoms. An analysis suggests the breaches were due to compromised credentials and poor authentication controls. The incidents highlight the need for stronger security measures, including widespread adoption of multifactor authentication and stricter access … Read more
June 18, 2024 at 06:27PM Amtrak disclosed a data breach affecting Guest Rewards accounts, emphasizing it was not a hack of their systems. Account data was accessed, including personal information, payment details, and loyalty points. Amtrak urged customers to rotate passwords and implement multifactor authentication. The incident is not the first for Amtrak, highlighting the … Read more
June 18, 2024 at 09:08AM The recent attacks on customer accounts hosted on the Snowflake data warehousing platform may indicate a shift towards targeting SaaS application environments by threat actors. A threat group, UNC3944, has broadened its focus to enterprise SaaS applications and uses tactics like ransomware attacks, credential phishing, social engineering, and creating new … Read more
June 12, 2024 at 03:43PM AWS has launched FIDO2 passkeys for multi-factor authentication, boosting account security. These passkeys use public key cryptography and resist phishing attacks. Amazon encourages users to adopt MFA, planning to make it mandatory for root account users by July 2024. The company is committed to enhancing MFA adoption via CISA’s Secure … Read more
June 12, 2024 at 07:39AM ShinyHunters, a notorious hacker gang, executed a colossal data breach on Ticketmaster, exposing 560 million users’ data. Live Nation confirmed the breach and initiated an investigation. The same group also targeted Santander, linked through the common use of Snowflake. Snowflake’s CISO provided recommendations for preventing unauthorized access. Implementing MFA is … Read more
June 11, 2024 at 02:10PM Pure Storage confirmed a data breach involving a single Snowflake data analytics workspace. No customer data was compromised, but telemetry information such as company names and email addresses was accessed. Security firm Mandiant identified a common factor in the breaches as the lack of Multi-Factor Authentication. Pure Storage stated that … Read more
June 10, 2024 at 05:48PM Mandiant’s investigation confirmed that recent account compromises at Snowflake were due to customers’ failure to implement multifactor authentication (MFA) and access control. Attackers systematically accessed accounts using stolen credentials obtained elsewhere. Compromised accounts’ data was extorted or sold on cybercrime forums. MFA implementation and stronger authentication methods are recommended to … Read more
June 6, 2024 at 06:18AM Tom, an employee at a financial institution, unknowingly used his strong password for multiple accounts, leading hackers to compromise his credentials and potentially launch an account takeover attack. These attacks are hard to detect because they involve legitimate user credentials. Implementing strong password security and multi-factor authentication is crucial to … Read more
June 5, 2024 at 09:30AM Hypr, a passwordless authentication provider, received $30 million from Silver Lake Waterman, bringing the total funding to over $127 million. The New York-based company offers a passwordless authentication solution supporting secure logins on mobile and web. The recent investment will be used to develop technologies to combat generative AI-driven credential-based … Read more
June 4, 2024 at 12:46PM Ticketmaster and Santander Bank experienced major data breaches due to inadequate security measures on a third-party cloud storage service. The breaches exposed sensitive data of millions of customers. Security analysts suspect the service provider as Snowflake, but Snowflake denies any platform breach. Experts emphasize the importance of implementing robust security … Read more