Targeted Credential Theft Campaign Hits Cloud Customers | Cybersecurity

Jun 04, 2024. Newsroom Cloud Security / Data Protection.

Cloud computing and analytics company Snowflake said a “limited number” of its customers have been singled out as part of a targeted campaign.

“We have not identified evidence suggesting this activity was caused by a vulnerability, misconfiguration, or breach of Snowflake’s platform,” the company said in a joint statement along with CrowdStrike and Google-owned Mandiant.

“We have not identified evidence suggesting this activity was caused by compromised credentials of current or former Snowflake personnel.”

It further said the activity is directed against users with single-factor authentication, with the unidentified threat actors leveraging credentials previously purchased or obtained through information-stealing malware.

“Threat actors are actively compromising organizations’ Snowflake customer tenants by using stolen credentials obtained by infostealing malware and logging into databases that are configured with single…”

Source thehackernews.com

Advertisement Gaming:   Xbox  |  Xbox Bundles  |  Nintendo  |  Playstation  |  Cards   | 
FTC: We use income earning affiliate links. More on Sposored links.
Terms of use and third-party services. More here.
Ad Amazon Minecraft the game, plus clothing, toys, and accessories.
Ad Amazon Gaming Laptops, clothing, games and more
Ad Amazon MUSIC Artists Merch Shop

Related Posts