Techly NewsGet the app

Get the latest tech news

Hackers Detail How They Allegedly Stole Ticketmaster Data From Snowflake


A ShinyHunters hacker tells WIRED that they gained access to Ticketmaster’s Snowflake cloud account—and others—by first breaching a third-party contractor.

“This means that [an EPAM worker] who had access to that Snowflake [account] had password-stealing malware on their computer, and their password was stolen and sold on the dark web,” says the researcher, who asked to be identified only as Reddington, an identity they use online to communicate with cybercriminals. It’s possible the ShinyHunter hackers did not directly hack the EPAM worker, and simply gained access to the Snowflake accounts using usernames and passwords they obtained from old repositories of credentials stolen by info stealers. In a phone call this week, Jones told WIRED that Snowflake is working on giving its customers the ability to mandate that users of their accounts employ multifactor authentication going forward, “and then we’ll be looking in the future to [make the] default MFA,” he says.

Get the Android app

Or read this on Wired

Read more on:

Photo of Hackers

Hackers

Photo of Snowflake

Snowflake

Photo of Ticketmaster data

Ticketmaster data

Related news:

News photo

'Hackers leaked intimate photos after my laptop was stolen'

News photo

Snowflake to Close Probe Into Cyberattack Targeting Clients

News photo

Hackers Access Tile's Internal Tracking Tools, Customer Data

« Apple Developing Thinner MacBook Pro, Apple Watch, and iPhone
Algae offer real potential as a renewable electricity source, new research shows »