Hackers have reportedly targeted cloud storage platform Snowflake, stealing data from hundreds of the company's clients, potentially including Ticketmaster.
(Photo by Joe Raedl/Getty Images)
Snowflake on Cybersecurity Breach
Snowflake, the Boston-based company known for providing cloud-based data storage and analytics services to many major brands, confirmed that it is investigating increased cyber threat activity targeting some of its customer accounts.
The statement comes in response to allegations by cybersecurity vendor Hudson Lock, which reported that Snowflake had experienced a “massive breach” affecting up to 400 companies.
Hudson Lock discovered the incident after getting in touch with the hackers who allegedly accessed Ticketmaster and Santander Bank data, and the cybersecurity vendor said the hackers indicated all of these breaches stemmed from a breach in a single vendor, Snowflake.
The hackers claimed to have gained access to Snowflake by obtaining login credentials from an employee's ServiceNow account that was supposedly integrated into Snowflake's internal IT infrastructure.
This access allowed the hackers to circumvent security measures at Okta, Snowflake's single sign-on provider. After the intrusion, the hackers claimed they were able to generate session tokens and extract large amounts of data from the company.
Hudson Rock revealed that the hackers then tried to extort $20 million from Snowflake, but received no response from the Montana-based company.
Related article: Live Nation announces support for Fair Ticketing Act following Taylor Swift ticket sales controversy
Live Nation admits Ticketmaster was hacked
Entertainment giant Live Nation has acknowledged that its ticket sales division, Ticketmaster, suffered a security breach. The confirmation was made in a filing with government regulators late Friday, according to TechCrunch.
Live Nation said the breach was the result of unauthorized activity within a third-party cloud database that contains the company's data. While Live Nation did not disclose the name of the third-party cloud database, much of Live Nation's and Ticketmaster's infrastructure is known to be hosted on Amazon Web Services.
The company claims in the filing that the breaches occurred on May 20 and 27, and that cybercriminals were “selling the company's user data via the dark web.”
Live Nation did not identify anyone whose personal information was compromised, but it is believed to be related to its customers. It is unclear why the company delayed disclosing the breach for more than a week.
“As of the date of this complaint, we believe that this incident has not, and is not likely to, have a material effect on our overall business operations, financial condition or results of operations,” Live Nation said in the complaint. “We continue to evaluate our risks and our remediation efforts are ongoing.”
A Ticketmaster spokesperson told TechCrunch that the company's stolen data was hosted on Snowflake, but did not explain how the data was extracted from Snowflake's systems.
Related article: Ticketmaster antitrust lawsuit brings optimism to ticketing startups
ⓒ 2024 TECHTIMES.com All rights reserved. Please do not reproduce without permission.
