Looks like more than enough blame to go around. Not enabling MFA is pretty egregious by ATT. Snowflake creating a platform where such a high consequence mistake is apparently easy to make, and obviously without sufficient compensating controls to detect or limit impact of such a single point of failure. That's egregious too.
WTF does this even mean?
The cloud employees downloaded it? If its so sensitive, why wouldn't this be heavily e2e encrypted?