Security News
Live Nation has confirmed that Ticketmaster suffered a data breach after its data was stolen from a third-party cloud database provider, which is believed to be Snowflake. While the breach has allegedly exposed the data of over 560 million Ticketmaster users, the company states that they do not believe that the breach will have a material impact on the overall business operations or its financial condition.
Live Nation has confirmed that Ticketmaster suffered a data breach after its data was stolen from a third-party cloud database provider, which is believed to be Snowflake."On May 20, 2024, Live Nation Entertainment, Inc. identified unauthorized activity within a third-party cloud database environment containing Company data and launched an investigation with industry-leading forensic investigators to understand what happened," Live Nation shared in a Friday night SEC filing.
Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.
Japanese crypto exchange DMM Bitcoin is warning that 4,502.9 Bitcoin, or approximately $308 million, has been stolen from one of its wallets today, making it the most significant cryptocurrency heist of 2024. "At approximately 1:26 p.m. on Friday, May 31, 2024, we detected an unauthorized leak of Bitcoin from our wallet," DMM Bitcoin told customers.
This video might be a juvenile colossal squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here.
An international coalition of police organized by the European Union's justice and police agencies has revealed an ongoing operation against malware droppers that Europol calls the "Largest ever operation" of its kind. Called "Operation Endgame," the ongoing initiative targets malware delivery "Droppers" and "Loaders," and is an attempt to disrupt large-scale malware deployments.
The U.S. Cybersecurity & Infrastructure Security Agency has added two vulnerabilities in its Known Exploited Vulnerabilities catalog, including a Linux kernel privilege elevation flaw. In late March 2024, a security researcher using the alias 'Notselwyn' published a detailed write-up and proof-of-concept exploit on GitHub, showcasing how to achieve local privilege escalation by exploiting the flaw on Linux kernel versions between 5.14 and 6.6.
Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.
Have attackers compromised Snowflake or just their customers' accounts and databases? Conflicting claims muddy the situation. "From an enterprise perspective, Snowflake is typically set up as a cloud-based data warehousing solution. Enterprises choose a cloud provider, and set up their Snowflake account within the chosen region. Data is ingested from various sources, transformed, and analyzed using SQL," Doron Karmi, Senior Cloud Security Researcher at Mitiga, told Help Net Security.
A threat actor claiming recent Santander and Ticketmaster breaches says they stole data after hacking into an employee's account at cloud storage company Snowflake. Snowflake disputes these claims, saying recent breaches were caused by poorly secured customer accounts.