this post was submitted on 11 Jun 2024
80 points (97.6% liked)

Technology

59197 readers
3144 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
top 7 comments
sorted by: hot top controversial new old
[–] [email protected] 25 points 5 months ago (1 children)

No MFA, and stale passwords up to 4 years old. And they say “anyone can do IT”…

[–] [email protected] 4 points 5 months ago

How much of that is IT and how much is the damn CIO who was appointed because he's the CEOs wife's cousin instead of because he knows anything and refuses to change his password?

But I'm not bitter. At least I didn't get caught in this one.

[–] [email protected] 14 points 5 months ago

Pathetic snowflake customers.

[–] [email protected] 9 points 5 months ago (1 children)

For a sec i thought this was about the Tor browser plugin and was confused.

[–] [email protected] 4 points 5 months ago
[–] [email protected] 2 points 5 months ago

This is the best summary I could come up with:


As many as 165 customers of cloud storage provider Snowflake have been compromised by a group that obtained login credentials through information-stealing malware, researchers said Monday.

On Friday, Lending Tree subsidiary QuoteWizard confirmed it was among the customers notified by Snowflake that it was affected in the incident.

Lending Tree spokesperson Megan Greuling said the company is in the process of determining whether data stored on Snowflake has been stolen.

Mandiant’s Monday post said that all the compromises it has tracked so far were the result of login credentials for Snowflake accounts being stolen by infostealer malware and stored in vast logs, sometimes for years at a time.

These credentials were primarily obtained from multiple infostealer malware campaigns that infected non-Snowflake owned systems.

The threat actor has subsequently begun to extort many of the victims directly and is actively attempting to sell the stolen customer data on recognized cybercriminal forums.


The original article contains 430 words, the summary contains 150 words. Saved 65%. I'm a bot and I'm open source!

[–] [email protected] 0 points 5 months ago

Volume? So like cad files? Stls?