The Snowflake Cloud Data Leak 

Babe wake up new data breach just dropped

Isn't this like the fourth time AT&T has had a massive breach?

So awful we have a credit score at all but one that is tied to forces beyond our control.

If I had a dollar for every time my sensitive info was leaked from a large tech company, I would be making money in a very strange way.

so this is how i find out my bank got breached huh 2 months late and from youtube NO email from them confirming nor denying that my data has been breached last straw, brb changing banks

when the amazon cloud was introduced back in the early 2000's it took us all of 10 minutes to come to the conclusion that letting a 3rd party manage our data was a dumb idea. I think we got it right.

OH BOY can't wait for your next vid.....

"... in human history" - glad to hear you acknowledge non-human history might include greater breaches :)

I died when he said "Interpol honeypot" 😂

Waiting for the Crowdstrike vid yo to drop...

If I had $10 for every time my personal data has been leaked in a data breach, I'd be *so* high right now:D

Not your computer, not your files, remember boys, the cloud is just another man's computer edit : THANK YOU FOR 400+ LIKES

when shit like this happens I get the urge to go ask my mom to stop paying for the monthly ICloud storage. can't believe we live in a world where Cloud storage is popular and companies can just change TOS whenever they want to fuck us over. we own nothing and we are forced to be okay with that.

I used to work for a large company which provided end-user remote tech support which was primarily staffed by contractors through a staffing company. The companies we supported often had locked-down systems, but our own machines were pretty much unrestricted. Our employees were frequently under-trained and irresponsible, and I can 100% see this happening to one of their machines.

Snowflakes are unique like a good encription pattern, but also extremelly fragile at the touch like a server with poor data security.

time to cook, my dude

Shiny is no longer administrator BTW, I'd assume this recording is old but as of June 14th, it's now 'Anastasia'

Speaking of 2FA and credit agencies, I noticed that 2 out of 3 of the big agencies don't have 2FA for customers, and the third does via SMS only. Shame shame

Thank you. BYOD should not be allowed for federally regulated industries, but Snowflake is a tech company that should've known to push 2FA to its customers. Redditors love Snowflake and this is the end result. Also don't know how they don't have a corporate VPN...Even smaller firms have that!

I hate living in this digital gulag.

"...the compromised accounts were not using any kind of multi factor authentication..." It's 2024, this still happens WAY too often!

so... what's so great about AI companies again? I thought they were supposed to create money, not have a hand in just dropping it all over the floor...

BOYD has always been a terrible idea. My last few companies have required me to use my personal phone for work. Here we have someone using their personal computer for work. Company work should always mean company equipment. I had one situation where I did a phone interview with a potential candidate who pulled up his current employer's source code on his computer to show us his work. All sorts of red flags there. Keep personal and company computing separate ... always!

Whenever you use the cloud, your data is basically in the public.

About time someone covered the actual cause behind all these recent leaks, I've been trying to post about this in a few comment sections

And I thought the benefit of such clouds would be security, because now you have experts run the system, but no you still need to be a security God to not mess up.

at&t cant catch a break

Patiently waiting for the CrowdStrike video

This feels like Solarwinds 2.0

Because we're living through late stage capitalism, I full expect one of these companies soon to fake a breach, to sell a copy of their database for extra revenue. So long as the cost of being caught * likelihood of being caught < profit why wouldn't they?

If only MegaCorporations could afford not to exploit feudal style seasonal hired help, maintaining their labor base with dignity and respect, if only 😔

Great content as always man, very informative for those of us a little newer to security

Pov: You're a hiring manager and you have the option to train someone for 0.0001 seconds or hire someone who can say 500 buzz words / minute ( You pick the latter).

At this point hacking is now dead.. it's just another hour of browsing for some people 😂

0:40: Outlaw: SAN-TAN-DEHR- BAYNK Me British Ears: Arghhh!!!!

Thanks for the info!

Got an ad for migrating away from snowflake under this video 😂

@mentaoutlaw Next Video ?

Everything getting hacked now in days 😭 Wow a lot of likes, that's cool

The owner of this channel, Jayson Tatum has a lot of knowledge about security, both digitally and within the NBA

yo appreciate the update and news

I remember working with a company that required a couple of security software to be installed on my work machine

After 30 years in this industry as a dev all I can say is it’s such an utter cluster f of greed and so easily solved that i literally can’t believe it every time this crap happens ……

Lirbals when Snowflake 😂 **smashes keyboard on dog**

No. For contractors they should use a VPN and connect to a Virtual Desktop owned and managed by the client. Client resources can only be accessed via the virtual desktop, either by network or conditional access. Data should not be able to be transferred from the contractor's machine and the virtual desktop, even email access should only be via the virtual desktop. Edit: MFA for access to the virtual desktop.

Im happy leaks happen im always curious whats happening behind thr scenes

I shortly thought you were talking about Tor Snowflakes omg

2FA and security to log everywhere... why the hell not every service move to that standard??

“I have nothing to hide!”

Just changed my password for att 😢

Well, make having the data secure the cheapest option. Take a percentage of the yearly revenue (not profit!) of a company that let the data out (Santander, or what have you). I bet 5% would make *wonders* to their security.

i wake up 🔁 there is another data leak

my data have been leaked so many times in the last few years, i should simply make a post on socialmedia with all my data, it will make no difference 🤣

Just invested $10,000 in Revux! This project is set to soar.

Revux is creating waves in the crypto world. The concept of an integrated financial platform is a game-changer!

new vid when

corps will say to put as much security as possible into these "cloud" services and then have them dismantled by the simplest rickroll

Call Sridhar Ramaswamy! the Puppy CEO😂

saint tender bank lol nice vid kenny

Stop using cloud base systems, and start using things locally

Turn off the phone! Claim your privacy

Good day to remember that I don't give my credit card data for long term storage to any service.

Just watched the video about Revux. Research mode activated!

Can't wait to see $RVX (Revux) hit $5 by the end of the year.

Boring times in the market are the best times to hold and buy more on every dip.

womp womp

@MentalOutlaw, I was really hoping you might address Snowflakes main selling point, "Unsiloed Data Storage". They're biggest selling point, IMO is essentially, insecurity. Siloed data does add hurdles to information sharing between apps and geographical spaces, but when configured correctly, dramatically reduces the scope and scale of any one breach. Snowflake is basically saying, Hey hackers! Here's all your data in ONE PLACE! Just break a single account for any one of our applications and it's all yours! I'd love to get your take on that.

Interesting, thanks. Sorry, if it's not on topic, such a question, how to transfer USDT from OKX wallet to Binance? Apart from the seed phrase, nothing: bar buffalo stone electric maze limb oil match obtain rice above asset. Can you describe how to do it correctly?

hey Mental Outlaw, I was wondering if you'd be willing to cover a kind of touchy subject; the guy who shot at Trump. Why? because the media is absolutely perplexed at how he was able to cover his tracks online, generally a bunch of boomer opinions on it... I think it would really show people a different perspective (an accurate one)

10:09 amongst us

Actually a pretty good take !

Having a 762 credit score those are rookie numbers.

only time I'd store any data in a cloud platform is if they're encrypted with a 75 character password

снежинка облако это снежинка я тоже сигма

AT&T is LITERALLY the nsa. Wtf 🤣

Proxmox or some other in-situ VM is a good thing for these contractors to learn if they value their position. Such knowledge should be mandatory for fitness of position. Wish I could write the way I want to, but RU-vid keeps eating my words.

Revux is the one, mark my words. All early investors will earn generational wealth.

so that explains why i'm getting random texts advertising "WFH" opportunities.

"Sir, we should make our own cloud infrastructure. It'll be absolutely free because it's open source, but it'll take a week or two to get it running "Hmmmmm... I'll think on it..." "Don't listen to him sir! I have an ONLINE cloud solution!" "How is it better?" "It's an AI CLOUD!" "GENIUS, JENKINS! YOUR SALARY IS NOW $4.7M!"

Well said.

data? i hardly know a’

10:00 Yep, one of my family almost got baited by scammers yesterday if they didn't consult my simple link check for spending online, because they got baited by some random discount by some known actress that is not actually her. Take care of your friends and family folks. One more thing, from my experience they will do some sussy moves online once or twice a year, so be careful. XD

i thought of snowflake as in the tor bridge 😭

Another thing to disturb my sleep for tonight.

Bro where's the microsoft outage video? Oh, you use Windows, so you couldn't upload it. I get it.

well if people accessing cloud systems dont do security properly this isnt cloud's fault but users

It’s ok, I’ve had so much fraud hit my cards lately that I have no money and all my cards are new. i’m good.

Contractors are sometimes cheaper than hires, but often they end up costing more. Between contract revisions, missed deadlines, and bad programming, it can get very pricey to cover for them.

"zero trust" ¯\_(ツ)_/¯

Another L for online fiat banking

They are not tracking UNC5537 for this ‘incident’ UNC is a prefix for any uncategorized threat actor, ie don’t know their motivations or affiliation

Snowflake is one of the few Tech companies that Warren Buffet invests in. This might be why LOL

Damn at first i thought there was an issue with Tor's snowflake bridge

......oh shit, my work place has a addon for all browsers with a snowflake ❄️ icon.

How do you vote with your dollar if all the companies are being hacked?

The big on-line services should learn that if data does not exist you cannot steal it .

Database leaks? No way

This is irresponsible and inaccurate. "The snowflake hack" that you refer to is not one hack and it really has nothing to do with snowflake. Yes, snowflake is getting attacked a lot, and one at a time its vulnerable clients are getting owned, and it's probably negligent of them to allow a production account to be secured only with a password, but that's what's going on here. Snowflake didn't get hacked, their customers with insecure passwords did. The words you use matter. Try to be accurate next time.

haha data leak? no silly, they just open sourced their LLM training dataset, such a good hearted company, paying respect to the people 🤗

A new day, a new data breach 💀