[Security News] Data breach creates additional victims

Security weekly, security news, Snowflake, SYNNOYVIS, MediSecure, Frontier, New York Times

June 12, 2024


1. Snowflake Data Breach Impacts Ticketmaster, Other Organizations

Ticketmaster parent company Live Nation Entertainment confirmed unauthorized access to “a third-party cloud database environment” mainly containing data from the online ticket sales platform. It’s Snowflake, a cloud AI data platform that thousands of companies use for storing, managing, and analyzing large volumes of data. A report from Snowflake along with security providers CrowdStrike and Mandiant outlined how a third-party hacker was able to use stolen credentials to access what was classified as demo account data. What is worse, the Snowflake Data Breach impacted Advance Auto Parts as well.

Sources: Security Week, Bleeping Computer, The Verge, SC Media



A threat actor known as ShinyHunters is selling what they claim is the personal and financial information of 560 million Ticketmaster customers on the recently revived BreachForums hacking forum for $500,000. They also contain customer credit card information, including hashed credit card numbers, the last four digits of the card numbers, credit card and authentication types, and expiration dates, with financial transactions spanning from 2012 to 2024. According to the former CEO of National Cyber Security Center, Russian hackers are behind the cyber attack.

Sources: Security Affairs, Bleeping Computer, Dark Reading, BBC


3. MediSecure declares insolvency following massive data breach

MediSecure has entered into voluntary administration following a data breach in May that saw 6.5 terabytes of patient and physician information posted for sale on a hacking forum. Two staff members of FTI Consulting were appointed as liquidators of operations, the control of MediSecure has now passed to the firm. MediSecure wishes to clarify that it sought funding from the Commonwealth government for the limited and confined purpose of assisting with the costs associated with responding to the incident. But this request was denied. FTI Consulting will work closely with the National Cyber Security Coordinator.

Sources: Cyber Daily, it News, Information Age


4. Frontier warns 750,000 of a data breach after extortion threats

Frontier Communications is warning 750,000 customers that their information was exposed in a data breach after an April cyberattack claimed by the RansomHub ransomware operation. While Frontier did not share many details about the incident in their notification, at the time, the company was forced to shut down some of its systems to contain the attack and prevent it from impacting other devices on the network. These data breach notifications come after the RansomHub extortion group claimed responsibility earlier this week for the attack on Frontier. The extortion group said they had stolen 2GB of sensitive information, including personal information belonging to at least 500,000 Christie’s clients.

Sources: Bleeping Computer, Security Affairs, The Register, CRN


5. New York Times source code compromised via exposed GitHub token

Prescription management company Sav-Rx is warning over 2.8 million people in the United States that it suffered a data breach, stating that their personal data was stolen in a 2023 cyberattack. On October 8, 2023, the company identified an interruption to our computer network. As a result, the company immediately took steps to secure our systems and engaged third-party cybersecurity experts. While their systems were restored in a day, investigating whether personal data was stolen took much longer.

Sources: Security Affairs, The Register, Cyber Security News



Check out Penta Security’s product lines:

Web Application Firewall: WAPPLES

Database Encryption: D’Amo

Identity and Access Management: iSIGN+ 

Car, Energy, Factory, City Solutions: Penta IoT Security

Click here for inquiries regarding the partner system of Penta Security

Check out the product lines of  Cloudbric by Penta Security:

Cloud-based Fully Managed WAAP: Cloudbric WAF+

Agent based Zero Trust Network Access Solution: Cloudbric PAS

Agentless Zero Trust Network Access Solution: Cloudbric RAS

Blockchain: Blockchain Security Solution

Click here for inquiries regarding the partner system of Cloudbric