Change your passwords. New breach is bad

So there is a very significant new security breach at SnowFlake. They are one of the larger cloud providers like Amazon and Google that provide servers and host businesses.

A massive breach this spring affected an as-yet-unknown number of their 150+ customers. Passwords and personal data were stolen. Information is trickling out but it is believed that many of the half-billion Ticketmaster accounts and 50 million Santander bank accounts could have been breached. Unconfirmed as yet, but the hackers themselves claim another ~10 other large firms like Lending Tree, Allstate, Progressive, StateFarm, Advanced Auto Parts and others. It’s bad. #RealBad.

We cannot be sure this specific hack caused it, but suddenly - in the last two weeks - three of our accounts were hacked or purchases were made or attempted (Netflix, PayPal, Dunkin) so we changed everything. Likely, they buy a few passwords then try them everywhere. We’ll be filing identify theft with the police & federal agenc(ies) and putting freezes on all three credit check agencies to prevent opening accounts in our name. We’re also adding two-factor authentication and will rotate more often.

What kind of madman would dare hack my Dunkin? That was the straw that broke the camel’s back. And his routine DD order was frankly embarrassing.

Many people share passwords across accounts, so cracking a donut shop account may reveal a password useful for something more valuable to the cracker.

The obvious mitigation is not to share passwords across different accounts, at least for high value accounts.

Agreed. Which is clearly what they did.

But my Dunkin. That’s unAmerican

I use multi-factor authentication now.

Yes, I have multi-factor and/or face of fingerprint recognition for most apps. Haven’t noticed any issues.

Donut123!.. How would anyone figure that out .

I just had my identity hacked “again”. I had to unfreeze my credit agencies for something that I am doing and got a letter that I applied for a “Disney” credit card through Chase. Chase is notifying all agencies and certain things I have to do but put the freeze back on all 3. I was told to unfreeze for the few minutes they need it, then refreeze it right away. They told me once idenity hacked it just keeps happen? . Ugh. I mean… Disney credit card???

I also do 2 part Auth etc etc.

We’ve had our credit frozen with all three agencies for years now.

Something has to happen. They need to figure out another way to verify people. The password thing isn’t working, because people need to remember their PWs, and not everyone is organized enough to do it. So they use the same one over and over.

Face or finger print recognition won’t help you if they have your password. Multi-factor authentication is the only way to go.
I recently had a scare about my Facebook account being hacked (it was due to their outage) and how hard it would be to recover my pw and my account that I updated all my accounts to have multi-factor authentication. I had multi-factor for my financial accounts, but not for my social media account before.

Agree on 2FA

In the analysis of the Snowflake breach, it looks like three issues are at the forefront

1. although they got in through Snowflake, they actually hacked the customers

2. one reason they could get customer data was a lack of two-factor authentication

3. the second reason was that people had old passwords that hadn’t changed for years.

So once they got one password they just had to try it everywhere

I should clarify, 2 have 2 factor ID for all apps and accounts that allow it. The 2nd factor is text to our cell, face or fingerprint.

Just got notifications from google that my gmail account was trying to get hacked, just changed my password.

So I always worry that kind of notification can be a scam. It should be safe as long as I go to google (ie don’t use a link provided in email), right?

Yes, I didn’t click the link, I went to the email account. I also got a text and had to do an email verification.

This type of attack is called credential stuffing. They get any single password and use bots and scripts to try it on hundreds of sites and find any site that also uses that password. That’s why we had four random sites hit at once.

I read that the this became a hot issue very recently because the hackers produced a set of large, linked lists that put various pieces of personal info together

This topic was automatically closed 180 days after the last reply. If you’d like to reply, please flag the thread for moderator attention.