Public Cloud Security Breaches Documenting their mistakes so you don't make them.
Posts with the tag MFA:

Snowflake

Last Updated: 2024-10-16 Author:   Chris Farris     MFA  | Snowflake | Shared Responsibility | Credential Rotation

In the spring of 2024, a number of Snowflake customers suffered data breaches when cybercriminals announced they had data sets from high-profile customers like TicketMaster, LendingTree, Neiman Marcus, and Santander.

While Snowflake & Mandiant found no evidence their cloud offering was compromised, these incidents became a serious public relations issue.

Microsoft (Midnight Blizzard)

Last Updated: 2024-04-13 Author:   Chris Farris     AzureAD  | M365 | Cloud Hygiene | MFA | Secrets

Leveraging an unused account, the Russian APT Midnight Blizzard was able to pivot into Microsoft’s corporate Office 365 to access the emails of key executives and cyber-security employees. Midnight Blizzard was searching for what information Microsoft knew about themselves.

Retool MFA

Last Updated: 2023-11-10 Author:   Chris Farris     Google  | MFA | Spear Phishing

An engineer at Retool fell victim to a social engineering attack that led to the compromise of an engineer’s MFA tokens and the account takeover of a small number of Retool customers.