Data Breach

Snowflake Customer Breaches Data Breach

0 records exposed • April 2024

Hackers used stolen passwords to log into cloud accounts at Snowflake, a data company. They got into accounts at Ticketmaster, AT&T, and many others, stealing billions of records.

What Happened

Multiple Snowflake customers were breached using stolen credentials. Affected companies included Ticketmaster, Santander Bank, and AT&T. Snowflake itself was not breached, but customer accounts were.

Attack method: Credential stuffing using stolen credentials

What Data Was Exposed

Varies by customer - includes all data stored in Snowflake

Is your business exposed?

What to Do If You're Affected

1.
For Snowflake users: Enable MFA immediately
2.
Rotate all Snowflake credentials
3.
Audit all data stored in Snowflake

Lessons for Businesses

• MFA should be mandatory for cloud services
• Credential hygiene affects entire supply chains
• Cloud providers need to enforce security minimums

Sources

https://www.snowflake.com/blog/detecting-and-preventing-unauthorized-user-access/

Related Breaches

Ticketmaster 2024, Att 2024

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required