// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Santander
Breach Record

Santander

DISCLOSED 2024-06-21 · SUPPLY CHAIN · 12,000 RECORDS EXPOSED

Santander's US subsidiary is notifying over 12,000 employees that their personal information was compromised. The breach is linked to an attack on Snowflake, a third-party cloud data platform. The incident highlights risks associated with supply chain and third-party service compromises.

The record

What we know

Disclosed
2024-06-21
Attack vector
Supply Chain
Sector
banking
Country
Spain
Records exposed
12,000
Data classes exposed
personal information
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · unclear · opinion

The breach involved a third-party service (Snowflake), not a direct endpoint compromise. A positive-security model on endpoints would not have prevented this supply chain attack.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other supply chain breaches on file

This page is the permanent ColdRecon entry for the Santander disclosure. It updates if new public reporting emerges. All tracked breaches →

Santander just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →