7.4 C
Thursday, June 13, 2024

Large Ticketmaster, Santander information breaches linked to Snowflake cloud storage

Must read

- Advertisement -

An alleged information breach doubtlessly affecting as many as 560 million Ticketmaster accounts and a confirmed one for Santander Financial institution might have stemmed from assaults on the cloud storage accounts with an organization referred to as Snowflake. As noticed by Bleeping Computer, an investigation from cybersecurity firm Hudson Rock experiences {that a} dangerous actor gained entry to Ticketmaster and Santander through the use of the stolen credentials of a single Snowflake worker.

In keeping with Hudson Rock, the hacker bypassed the authentication service Okta utilizing these credentials after which generated session tokens to acquire a trove of knowledge from Snowflake. Along with Ticketmaster and Santander Financial institution, Hudson Rock suggests the hacker might have gained entry to lots of of different Snowflake prospects. A number of of the main manufacturers that use the cloud storage service embody AT&T, HP, Instacart, DoorDash, NBCUniversal, and Mastercard.

Snowflake has seemingly disputed Hudson Rock’s findings in its most up-to-date response, saying that whereas investigating “doubtlessly unauthorized entry to sure buyer accounts,” it “noticed elevated risk exercise starting mid-April 2024 from a subset of IP addresses and suspicious purchasers we imagine are associated to unauthorized entry.”

Extra particulars on these findings are available here, however the firm says that whereas a foul actor accessed a “demo account” belonging to a former worker, it didn’t include delicate info. It claims that “To this point, we don’t imagine this exercise is attributable to any vulnerability, misconfiguration, or malicious exercise throughout the Snowflake product.”

Ticketmaster nonetheless has but to verify any breach, however malware tracker vx-underground says it may well assert “with a excessive diploma of confidence” that the leaked information is official. It notes that among the leaked info dates again to the mid-2000s and contains full names, emails, addresses, cellphone numbers, hashed bank card numbers, and extra.

- Advertisement -

Earlier this month, Santander published a statement to verify that “sure info” of consumers in Chile, Spain, and Uruguay had been accessed. The Verge reached out to Ticketmaster and Santander with requests for remark however didn’t instantly hear again.

Source link

More articles

- Advertisement -

Latest article