Snowflake Attack 2024


The Australian Signals Directorate has release intel communications that Snowflake instances are being targetted from a range of IP Addresses. Read ASD’s communications here. Snowflake has further describe the threat in its communications here.

This looks like brute force attacks at common Snowflake accounts prompting advisory to:
>> Update Admin accounts and Disable non-active accounts.

Another quick way to block these attacks is the black-list the offending IP Addresses in your firewall. You can do this in your snowflake account with the following steps.

Leave a Reply