Multifactor Authentication Is Not Enough to Protect Cloud Data

Ticketmaster, Santander Bank, and other large firms have suffered data leaks from a large cloud-based service, underscoring that companies need to pay attention to authentication.

Dark Reading, Staff & Contributors

June 28, 2024

1 Min Read
two snowflakes in blue background
ShutterStock

A cybercriminals group known as UNC5537 has been on a tear.

Over the past month, the ransom gang, possibly related to ShinyHunters or Scattered Spider, stole more than 560 million customer records from Ticketmaster and posted it for sale on its reconstituted leak site, BreachForums, on May 28, asking for $500,000. Two days later, the group claimed to have stolen 30 millions account records from Spain-based Santander Bank, asking for a cool $2 million. Both companies acknowledged the breaches after the postings.

The cause of the data leaks — and at least 163 other breaches — appears not to be a vulnerability but the use of stolen credentials and poor controls on multifactor authentication (MFA), according to a June 10 analysis by incident-response firm Mandiant, part of Google.

"Mandiant's investigation has not found any evidence to suggest that unauthorized access to Snowflake customer accounts stemmed from a breach of Snowflake's enterprise environment," Mandiant stated in its analysis. "Instead, every incident Mandiant responded to associated with this campaign was traced back to compromised customer credentials."

While the theft of data from Snowflake's systems could have been prevented by MFA, the companies' failures go beyond the lack of that single control.

Read the Full Article on Dark Reading

About the Author

Dark Reading

Dark Reading

Staff & Contributors

Dark Reading: Connecting The Information Security Community

Long one of the most widely-read cybersecurity news sites on the Web, Dark Reading is also the most trusted online community for security professionals. Our community members include thought-leading security researchers, CISOs, and technology specialists, along with thousands of other security professionals.

See more from Dark Reading
Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.
SIGN-UP

You May Also Like

More Insights
Webinars
More Webinars
Reports
More Reports

Editor's Choice

man on a boat in the outer space with colorful cloud,illustration
IT Infrastructure
9 Ways Cloud Makes Companies More Competitive
9 Ways Cloud Makes Companies More Competitive

Aug 26, 2024

Machine Learning & AI
The Search for Solid Hires Between AI Screening and GenAI Resumes
The Search for Solid Hires Between AI Screening and GenAI Resumes

Aug 19, 2024

Data breach concept with faceless hooded male person, low key red and blue lit image and digital glitch effect.
Cyber Resilience
Examining the National Public Data Breach and Risks for Data Brokers
Examining the National Public Data Breach and Risks for Data Brokers

Aug 22, 2024

Calculator displaying the text "SALARY" on top of $100 bills.
IT Leadership
2024 InformationWeek US IT Salary Report: Profits, Layoffs, and the Continued Rise of AI
2024 InformationWeek US IT Salary Report

Jun 4, 2024

Cartoon comic art illustration showing a 1960s technician scientist working on an Honeywell style tape-drive computer with a dot-matrix paper readout.
Data Management
11 Irritating Data Quality Issues
11 Irritating Data Quality Issues

Aug 20, 2024

Webinars
More Webinars
White Papers
More White Papers
Live Events
More Live Events
Reports
More Reports