July 11, 2024 at 10:24AM Advance Auto Parts has notified over 2.3 million people about a data breach of personal information during Snowflake data theft attacks. This incident affected current and former employees and job applicants, with stolen data including names, Social Security numbers, and driver’s licenses. Advance is providing complimentary identity theft protection and … Read more
July 11, 2024 at 09:23AM Ethan Steiger, CISO of Advance Auto Parts, disclosed that 2.3 million individuals were affected by a cyber breach. The criminals, under the alias Sp1d3r, attempted to sell the stolen data for $1.5 million, falsely claiming to have taken 380 million customer profiles. Snowflake has introduced new security measures, including multifactor … Read more
July 5, 2024 at 01:11PM Threat actors have leaked alleged Ticketmaster barcode data for 166,000 Taylor Swift Eras Tour tickets, threatening to release more if a $2 million extortion demand isn’t met. The data breach occurred via Snowflake, impacting multiple organizations including Neiman Marcus and the Los Angeles Unified School District. Ticketmaster has not confirmed … Read more
July 2, 2024 at 08:28PM Summary: Over 500 credentials were stolen from Snowflake environments, impacting at least 165 customers. The cybersecurity investigation labeled it an information-stealing malware incident, urging enhanced security measures. Experts advise collecting and analyzing account data, using a single sign-on provider, and limiting the blast radius of a breach to enhance security. … Read more
June 26, 2024 at 01:41PM Neiman Marcus confirmed data theft affecting 65,000 customers through attacks on Snowflake. “Sp1d3r” sold personal data for $150,000. Over 70 million transactions, 50 million emails, and 12 million gift card numbers were for sale. UNC5537 accessed accounts using valid credentials due to lack of multifactor authentication, impacting 165 organizations. Strengthening … Read more
June 23, 2024 at 10:21PM Snowflake breach continues to expand with victims, including Ticketek and Advance Auto Parts. Hacker claims to have accessed Snowflake by compromising third parties. CDK faces ransomware attack and potential payment. Critical vulnerabilities found in Juniper Secure Analytics, CAREL Boss-Mini, Westermo L210-F2G, and RAD Data Communications SecFlow-2. Alleged Apple tools leaked. … Read more
June 21, 2024 at 03:08PM UNC5537, a cybercriminal group, has recently targeted several companies, stealing millions of customer records and demanding large ransoms. An analysis suggests the breaches were due to compromised credentials and poor authentication controls. The incidents highlight the need for stronger security measures, including widespread adoption of multifactor authentication and stricter access … Read more
June 12, 2024 at 07:39AM ShinyHunters, a notorious hacker gang, executed a colossal data breach on Ticketmaster, exposing 560 million users’ data. Live Nation confirmed the breach and initiated an investigation. The same group also targeted Santander, linked through the common use of Snowflake. Snowflake’s CISO provided recommendations for preventing unauthorized access. Implementing MFA is … Read more
June 11, 2024 at 02:10PM Pure Storage confirmed a data breach involving a single Snowflake data analytics workspace. No customer data was compromised, but telemetry information such as company names and email addresses was accessed. Security firm Mandiant identified a common factor in the breaches as the lack of Multi-Factor Authentication. Pure Storage stated that … Read more
June 11, 2024 at 09:03AM BlackBerry is investigating a potential data breach involving Cylance data being sold on the dark web. The company states that the data appears to be old and not from their own systems. No current Cylance customers seem to be affected, and the data was accessed from a third-party platform unrelated … Read more