Skip to main content

Snowflake Data Breach Investigation

The Lyon Firm is investigating a data security incident at Snowflake, Inc., which has resulted in an alleged data breach at Ticketmaster, Advanced Auto Parts, QuoteWizard and potentially dozens of other companies’ customer data. Contact our data breach lawyers to learn more and to discuss filing a class action claim if you believe your personal information has been compromised.

Several large companies have confirmed that they have experienced data breaches related to their use of an AI data platform hosted by Snowflake. There are still several unknowns, including exactly what information has been compromised. However, we believe this breach could result in placing millions of individuals at increased risk for fraud and identity theft.

The cloud data company has over 9,800 customers, including healthcare organizations, retail giants, and tech companies. Snowflake has massive clients like Ticketmaster, LendingTree, Advance Auto Parts, Mastercard, AT&T, ExxonMobil, Cisco, Adobe, CapitalOne, Doordash, Roku, EA, Siemens, Kraft Heinz, and others.

What Happened at Snowflake?

Snowflake has not yet confirmed the breach of its IT systems, and has not yet sent out data breach notification letters to impacted individuals. Some experts expect this to happen in the next week. On May 30, 2024, Snowflake posted a notice on its website, noting the company “recently observed and is investigating an increase in cyber threat activity targeting some of our customers’ accounts.”

The cyberattack at Snowflake incident appears to be the catalyst for at least dozens of major data breaches. Live Nation Entertainment, the parent of Ticketmaster, confirmed unauthorized access to their networks. The Ticketmaster data breach could affect as many as 560 million users. The loan comparison site LendingTree has said its subsidiary QuoteWizard had its data stolen.

Ticketmaster confirmed that cyberattackers accessed a third-party “cloud database environment,” likely after attackers accessed its Snowflake account. Last week, the hackers responsible said they had stolen three terabytes of data from Advance Auto Parts via the company’s Snowflake account, a huge data set that allegedly includes 380 million customer profiles.

But neither LendingTree nor Advance Auto Parts have filed breach notifications with the Securities and Exchange Commission (SEC), but both are thought to be embroiled in this affair.

Ticketmaster, Santander Bank, Anheuser-Busch, Allstate, Advance Auto Parts, Mitsubishi, Neiman Marcus, Bergdorf Goodman, Progressive, and State Farm are all alleged potential victims in the Snowflake data breach.

The full fallout of the event may be unknown, but more will be known in the coming days, so stay tuned for updates. According to TechCrunch, LendingTree has confirmed that Snowflake notified the company about QuoteWizard, while Snowflake is trying to shift blame toward customers not using multi-factor authentication.

The cyber threat intel firm Mandiant has stated that approximately 165 clients could potentially have data stolen by hackers. In a blog post, Mandiant attributed the account hacks to UNC5537, a cybercriminal gang. “UNC5537 has leveraged stolen credentials to access over 100 Snowflake customer tenants,” noted one Mandiant spokesman. They also noted that in the past, the same threat actor compromised customer tenants, stole data, extorted victims, and then later sold victim data on cybercriminal forums.

Filing Class Action Data Breach Lawsuits

If you do eventually receive a data breach notification from Snowflake, Santander Bank, Advance Auto, Ticketmaster, LendingTree or any other company indicating it was affected by a data security incident at the company, you should understand you may be at risk.

The Lyon Firm has the resources, experience and dedication to represent plaintiffs nationwide in a wide variety of data privacy matters. We have settled multiple data breach cases in the past, and are currently involved in some of the largest and significant ongoing data theft lawsuits. We aim to compensate victims of data breaches when companies fail to build and maintain proper IT security. We believe that any company that collects and stores your personal data has a duty to protect it to the best of their ability.

Other Related Incidents: