Cloud Provider Snowflake Suffers Snowballing Data Breach

July 6, 2024

INCIDENT

The number of alleged hacks targeting the customers of cloud storage firm Snowflake appears to be snowballing into one of the biggest data breaches of all time. The earliest evidence of unauthorized access to Snowflake customer instances occurred on April 14, according to Mandiant's June 10 threat intelligence report on the attacks.

Alleged affected customers are Ticketmaster (560 million records), Santander (30 million records), automotive giant Advance Auto Parts (380 million records/3TB),LendingTree and QuoteWizard (190 million records/2TB). Neither LendingTree nor Advance Auto Parts has filed breach notifications with the Securities and Exchange Commission at this time.

Incident Date

April 14, 2024

Estimated Cost

Unknown at this time (Snowballing into one of the largest data breaches).

Type of Malware

No Malware identified

Threat Source

No threat source identified