Multifactor Authentication Is Not Enough to Protect Cloud Data

Cybercriminal group UNC5537 has reportedly stolen over 560 million customer records from Ticketmaster and 30 million from Santander Bank, posting them for sale on dark web site BreachForums. The breaches are believed to have resulted from the use of stolen credentials and poor multi-factor authentication controls. Incident-response firm Mandiant has suggested that companies using cloud services like Snowflake need increased visibility of their attack surfaces and should quickly remove redundant accounts to reduce system vulnerabilities.