We’ve got discovered no proof that this exercise is brought on by a vulnerability, misconfiguration, or breach of the Snowflake platform;
We’ve got discovered no proof that this exercise was brought on by the compromised credentials of present or former Snowflake personnel;
This seems to be a focused marketing campaign focusing on customers with single-factor authentication;
As a part of this marketing campaign, menace actors leveraged credentials beforehand bought or obtained via information-stealing malware; and
We did uncover proof that menace actors obtained the private credentials of former Snowflake workers and gained entry to demo accounts. It doesn’t comprise delicate data. The demo account isn’t related to Snowflake’s manufacturing or firm techniques. Entry is feasible as a result of, in contrast to Snowflake’s enterprise and manufacturing techniques, the demo account doesn’t assist Okta or multi-factor authentication (MFA).
