30 June 2024
Why must it be such a hectic data breach week just when I’m dealing with jet lag?! Upon returning from Europe, an array of breaches originating from Snowflake emerged and chaos ensued. There is a plethora of data to inspect, numerous media inquiries, and extensive dialogues with affected individuals, breached organizations, incident response specialists, and law enforcement authorities. This predicament is causing utter turmoil, and I anticipate it will persist as only a fraction of the data from the purported 165 affected entities has surfaced online thus far. It appears that another captivating week is on the horizon.
References
- Sponsored by: Push Security. Halt identity attacks with a browser-based agent that identifies and thwarts account takeover. Try it for free now.
- Entrust has lost their trust (within that tweet thread is a search to all my previous mentions of Entrust, with some really sketchy “security” claims in there)
- The Snowflake situation is evolving into one of the most significant security incidents in recent history (165 distinct affected companies, billions of records and terabytes of data, ransom demands, and much more data likely to leak)
- The Ticketek data from the Snowflake situation was sent to me this week (hey, I’m in another breach!)
- The Neiman Marcus data – also from Snowflake – was publicly posted (they say 64k people impacted, but the data suggests it’s tens of millions)
- Anticipating increased activity towards the week’s end, I penned an article on the state of data breaches while airborne earlier in the week (given the positive response received, I plan to follow it up in the next few days)
About Author
