Techly NewsGet the app

Get the latest tech news

Suspect arrested in Snowflake data-theft attacks affecting millions


Threat actor exploited account credentials swept up by infostealers years earlier.

Mandiant went on to say that all the compromises it had tracked were the result of login credentials for Snowflake accounts being stolen by infostealer malware and stored in vast logs, sometimes for years at a time, before eventually making their way into the hands of the threat actors who used them in the individual breaches. Other Snowflake customers reported by various news outlets as breached are Pure Storage, Advance Auto Parts, Los Angeles Unified School District, QuoteWizard/LendingTree, Neiman Marcus, Anheuser-Busch, Allstate, Mitsubishi, and State Farm. Dan Goodin is Senior Security Editor at Ars Technica, where he oversees coverage of malware, computer espionage, botnets, hardware hacking, encryption, and passwords.

Get the Android app

Or read this on ArsTechnica

Read more on:

Photo of Millions

Millions

Photo of theft attacks

theft attacks

Photo of suspect

suspect

Related news:

News photo

Fisker EVs Hired an IT Spy Who Funneled Millions to N. Korea's Missile Program

News photo

Suspect behind Snowflake data-theft attacks arrested in Canada

News photo

Millions of U.S. Cellphones Could Be Vulnerable to Chinese Government Surveillance

« Sony will discontinue its pricey Airpeak S1 camera drone in March
Pm-AMM: A Uniform Automated Market Maker for Prediction Markets »