Cybersecurity daily news, Breach, Cybersecurity insurance, IT distribution, Vulnerability Management, SOC

MSSP Market News: Snowflake Breach Scope Spreads


Each business day MSSP Alert delivers a quick lineup of news, analysis, and chatter from across the MSSP, MSP and cybersecurity world.

Reaching Our Inbox: 
Send news, tips and rumors to Managing Editor Jim Masters: [email protected].

Today’s MSSP Alert Market News:

1. Splunk Conference News: Cybersecurity and observability provider Splunk introduced a series of security innovations designed to power the SOC of the future at its .conf24 this week in Las Vegas. The event also provided the backdrop for details of how Splunk will integrate with its new owner, Cisco. More details to come.

2. Splunk Partner Award: MSSP GuidePoint Security has received the 2024 Splunk AMER Regional Partner of the Year Award recognizing exceptional performance and commitment to the company’s Splunk partnership. The award coincides with Splunk’s .conf24 event this week.

3. Splunk, NJIT Partnership: Splunk, the cybersecurity and observability leader, today announced that New Jersey Institute of Technology (NJIT) is using Splunk software to provide a seamless, secure experience to prospective and current students.

4. Snowflake Breach Scope Spreads: The scope of the Snowflake data breach continues to unfold. Pure Storage says that it experienced a security incident involving a third party that gained unauthorized access to a Snowflake data analytics workspace that contained telemetry information Pure uses to provide customer support services. Data includes company names, LDAP user names, email addresses and the Purity software release version number. Other impacted Snowflake customers include Advanced Auto Parts and Lending Tree.

5. UHH Takes UnitedHealth Reporting Burden off Hospitals: The U.S. Department of Health and Human Services has agreed to allow UnitedHealth Group to notify people whose data was exposed during a hack on its Change Healthcare unit earlier this year. The move takes the notification burden off of U.S. hospitals and healthcare providers. See our timeline of UnitedHealth Group data breach coverage here. It’s unclear if this action will set a precedent for future supply chain attacks. (source: Reuters)

6. Cyberinsurance, Distribution Partnership: Cyber insurance and warranty providerSpectra will provide its new certification and cyber resilience warranties to Ingram Micro channel partners in the U.S. In addition, these will be offered at a special rate to members of Ingram Micro’s SMB Alliance and TRUST X Alliance communities from now through the end of the summer. These products are specifically designed for MSPs and their customers. Spectra will also be attending Ingram Micro SMB Unplugged event, slated for June 17-19 in Buffalo, New York.  

7. Cybersecurity Burnout: A full 70% of cybersecurity pros say they often have to work weekends. In addition, 64% say they are planning to look for a new job in the next 12 months. This is according to The Bitdefender 2023 Cybersecurity Assessment

8. Patch Tuesday: This week marks Microsoft’s patch Tuesday and in its 2024 Security updates the company included 49 CVEs covering operating systems streaming services, windows routing and remote access service, and plenty more. Read the full update here.

9. Fortinet Vulnerability: Fortinet has released security updates to address a FortiOS vulnerability. The bulletin is available here.

Jessica C. Davis

Jessica C. Davis is editorial director of CyberRisk Alliance’s channel brands, MSSP Alert, MSSP Alert Live, and ChannelE2E. She has spent a career as a journalist and editor covering the intersection of business and technology including chips, software, the cloud, AI, and cybersecurity. She previously served as editor in chief of Channel Insider and later of MSP Mentor where she was one of the original editors running the MSP 501.