A ShinyHunters hacker tells WIRED that they gained access to Ticketmaster’s Snowflake cloud account—and others—by first breaching a third-party contractor.
Hackers who stole terabytes of data from Ticketmaster and other customers of the cloud storage firm Snowflake claim they obtained access to some of the Snowflake accounts by first breaching a Belarusian-founded contractor that works with those customers. About 165 customer accounts were potentially affected in the recent hacking campaign targeting Snowflake’s customers, but only a few of these have been identified so far.
told claims it has some 300 workers who are experienced in using Snowflake’s data analytics tools and services, and announced in 2022 that it had attained “Elite Tier Partner” status with Snowflake to leverage the latter’s analytics platform for its customers. ’s employees in Ukraine was infected with info-stealer malware through a spear-phishing attack. It’s unclear if someone from ShinyHunters conducted this initial breach or just purchased access to the infected system from someone else who hacked the worker and installed the infostealer. The hacker says that once on the
didn’t identify all of the victims breached through worker’s computer. But in cases where Snowflake credentials weren’t stored on the worker’s system, the hacker claims they sifted through stockpiles of old credentials stolen in previous breaches by hackers using infostealer malware and found additional usernames and passwords for Snowflake accounts, including ones harvested from the machine of the same
to gain access to Ticketmaster’s data and other Snowflake accounts, but the hacker provided to an online repository of data harvested by an infostealer that includes data siphoned from the computer of the spokesperson did not seem to be aware when contacted by followed up by providing the name of the Ukrainian worker whose machine the hackers allegedly compromised, as well as the username and password the worker used for accessing Ticketmaster’s Snowflake account, but the spokesperson did not respond to any additional questions. It’s possible the ShinyHunter hackers did not directly hack the
Malware Hackers Cybersecurity Security
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Mysterious corporate breaches could link to Snowflake cloud accountsSnowflake says malicious hackers are breaking in using legitimate login credentials, not via a security flaw.
Read more »
Criminal IP Unveils Innovative Fraud Detection Data Products On Snowflake MarketplaceThis product is tailored to support fraud detection (FDS) and malicious IP plans, enabling organizations to bolster their security posture and streamline incid
Read more »
Why Databricks’ Tabular Play Has Put Snowflake On The DefensiveR. Scott Raynovich is the Founder and Chief Analyst of Futuriom, an independent cloud technology analysis firm. He has been following technology markets as an analyst and writer for 25 years. In the past he was a partner and Editor in Chief of Light Reading (Lightreading.
Read more »
Ticketmaster’s Snowflake data breach was just one of 165Mandiant security researchers report that a “significant volume of data” has been stolen from up to at least 165 Snowflake cloud storage customers.
Read more »
The Snowflake Attack May Be Turning Into One of the Largest Data Breaches EverThe number of alleged hacks targeting the customers of cloud storage firm Snowflake appears to be snowballing into one of the biggest data breaches of all time.
Read more »
Advance Auto Parts tied up in Snowflake breachesThe company's incident could be tied to the ongoing breaches of Snowflake user accounts.
Read more »