<- Back to Insights
June 4, 2024
Snowflake, Cloud Storage Giant, Suffers Massive Breach: Hacker Confirms to Hudson Rock Access Through Infostealer Infection
Hudson Rock
|
Contributed by: Drex DeFord
Summary
This research uncovers a significant data breach involving cloud storage provider Snowflake. A threat actor behind this breach revealed that they used stolen credentials to access a Snowflake employee's ServiceNow account, bypassing security measures and generating session tokens to exfiltrate a large amount of data. The breach, which impacted approximately 400 companies including customers of Ticketmaster and Santander Bank, has led to data being sold on cybercrime forums. Documents provided by the threat actor confirmed the extent of their access. The actor attempted to blackmail Snowflake for $20 million, but the company was unresponsive. Snowflake is investigating the breach, which was part of a broader pattern of identity-based cyberattacks. Hudson Rock continues to monitor and report on the developments of this case.
Explore Related Topics