1. Forum
  2. Newsgroups
  3. comp.mobile.android

  • Re: What's a Snowflake cloud account?

    From bad sector@forgetski@_INVALID.net to comp.mobile.android,misc.phone.mobile.iphone,alt.comp.os.windows-10 on Fri Jul 19 05:32:58 2024
    From Newsgroup: comp.mobile.android

    On 7/14/24 19:42, Mickey D wrote:
    https://www.wired.com/story/atandt-paid-hacker-300000-to-delete-stolen-call-records/
    AT&T Paid a Hacker $370,000 to Delete Stolen Phone Records

    US telecom giant AT&T, which disclosed Friday that hackers had stolen the call records for tens of millions of its customers, paid a member of the hacking team more than $300,000 to delete the data and provide a video demonstrating proof of deletion.

    The hacker, who is part of the notorious ShinyHunters hacking group that
    has stolen data from a number of victims through unsecured Snowflake cloud storage accounts, tells WIRED that AT&T paid the ransom in May.

    What's a Snowflake cloud account?
    --
    Data-Denial is the name of the game. Other than friends, family or civil authority (and even for the latter only to the extent necessary for
    necessary identification), criminalize the storage of anyone else's
    personal data except momentarily in verifiably volatile fashion to
    complete a transaction. In the case of all identity abuse including the
    above avenues, make the contributing data source *criminally complicit*
    before the law regardless of the employed methods, privacy-policies or
    other similar double-speak parading as safeguards.




    --- Synchronet 3.20a-Linux NewsLink 1.114
  • From bad sector@forgetski@_INVALID.net to comp.mobile.android,misc.phone.mobile.iphone,alt.comp.os.windows-10 on Fri Jul 19 05:36:15 2024
    From Newsgroup: comp.mobile.android

    On 7/15/24 11:16, Alan Browne wrote:
    On 2024-07-15 00:27, VanguardLH wrote:

    https://www.securityweek.com/millions-impacted-by-breach-at-advance-auto-parts-linked-to-snowflake-incident/
    "Starting mid-April, the attackers accessed Snowflake accounts that
    lacked multi-factor authentication (MFA) protections and network allow
    lists, and then attempted to extort the victim organizations by
    threatening to leak the stolen data."

    Article says:

    <<< "On July 10, Advance Auto Parts disclosed to the Maine Attorney General’s Office that the personal information of 2,316,591 individuals was stolen from its Snowflake account and that it has started sending
    data breach notifications.

    The compromised personal information, the company says, includes names, dates of birth, Social Security numbers, driver’s license numbers, and other government-issued identification numbers. >>>


    Why does a parts vendor need birth date and SSNs, etc?

    (sorry, thunderbird is playing games with me this morning)


    EXACTLY, why does every other shithole litte money-changing merchant or
    other in-betweener require (or have access to at all), such data???
    --
    Data-Denial is the name of the game. Other than friends, family or civil authority (and even for the latter only to the extent necessary for
    necessary identification), criminalize the storage of anyone else's
    personal data except momentarily in verifiably volatile fashion to
    complete a transaction. In the case of all identity abuse including the
    above avenues, make the contributing data source *criminally complicit*
    before the law regardless of the employed methods, privacy-policies or
    other similar double-speak parading as safeguards.




    --- Synchronet 3.20a-Linux NewsLink 1.114