Data Leak Impacts Snowflake Customers, Including Advanced Auto Parts, LendingTree

The hacker, known by the alias “Sp1d3r,” has claimed responsibility for the breach and has been offering the stolen data for sale on various cybercrime forums. File photo: Ground Picture, ShutterStock.com, licensed.

BOZEMAN, MT – In a significant data breach, several major companies have been impacted due to vulnerabilities in their Snowflake cloud storage accounts. The breach, which came to light in early June 2024, has affected companies like Advanced Auto Parts and LendingTree, among others.

Details of the Breach:

The breach involved unauthorized access to Snowflake’s cloud storage, leading to the theft of vast amounts of data. The hacker, known by the alias “Sp1d3r,” has claimed responsibility for the breach and has been offering the stolen data for sale on various cybercrime forums.

Advanced Auto Parts:

Advance Auto Parts was one of the primary victims, with the hacker claiming to have stolen 3 terabytes of data. This includes 380 million customer profiles, 140 million customer orders, and details from 44 million loyalty or gas cards. Additionally, personal information of 358,000 employees was also compromised, which might include data of former employees as well. The stolen data encompasses names, addresses, email addresses, phone numbers, transaction details, and more.

LendingTree and QuoteWizard:

Another affected entity is LendingTree, specifically its subsidiary QuoteWizard. The breach reportedly exposed 190 million customer profiles and identity data. While LendingTree has confirmed the breach, it stated that consumer financial account information does not appear to be impacted at this time. Both LendingTree and QuoteWizard use Snowflake for their business operations, and the compromised data was stored in Snowflake’s cloud environment.

Other Affected Companies:

The breach also impacted several other high-profile companies. Ticketmaster and Santander were among the first to disclose their data breaches linked to Snowflake. Ticketmaster’s parent company, Live Nation, confirmed that 560 million customer records were compromised. Similarly, Santander reported the theft of 30 million customers’ credit card and personal data.

Snowflake’s Response:

Snowflake has maintained that the breaches were not due to any vulnerability within its platform but rather due to compromised credentials of its customers. The company emphasized the importance of using multi-factor authentication (MFA), which many affected customers had not enabled. Snowflake continues to work with cybersecurity firms like CrowdStrike and Mandiant to investigate and mitigate the impacts of these breaches.

Filed Under: Privacy Issues, Security Issues Tagged With: 140, 2024, 3, 380, 44, Access, Accounts, Addresses, Advance, Advanced, Advanced Auto Parts, Affected, Authentication, Breach, Breaches, Business, Cards, Claimed, Claiming, Cloud, Companies, Company, Compromised, Consumer, Credentials, Credit Card, Crowdstrike, Customer, Customers, Cybercrime, Cybersecurity Firms, Data, Data., Date Breach, Details, Disclose, Email, Emphasized, Employees, Enabled, Entity, Environment, Exposed, Financial Account, Former, Forums, From, Gas, Hacker, High-profile, Identity, Impacted, Impacts, Includes, Investigate, June, LendingTree, Linked, Live Nation, Loyalty, Major, Mandiant, MFA, Million, Mitigate, Multi-factor, Names, Offering, One, Operations, Or, Orders, Parent Company, Parts, Personal Information, Phone Numbers, Platform, Primary, Profiles, QuoteWizard, Records, Reported, Reportedly, Response, Responsibility, Sale, Santander, Significant, Snowflake, Sp1d3r, Stolen, Storage, Stored, Subsidiary, Terabytes, Theft, This, Ticketmaster, Transaction Details, Unauthorized, Vast, Victims, Vulnerabilities, Vulnerability, was, with