Ticketmaster’s parent company, Live Nation, has confirmed a significant data breach that could potentially impact 560 million customers worldwide. The unauthorized activity was detected after the hacking group ShinyHunters claimed responsibility for the theft of personal details from Ticketmaster users globally.
Details of the Data Breach
ShinyHunters, known for their high-profile cyber-attacks, stated that the stolen data includes names, addresses, phone numbers, and partial credit card details. The group is reportedly demanding a $500,000 (£400,000) ransom to prevent the sale of this information to other parties.
In a filing to the US Securities and Exchange Commission, Live Nation revealed that on May 27, a criminal threat actor offered what they alleged to be company user data for sale via the dark web.
Live Nation is currently investigating the breach and working to mitigate risks to its customers. The number of affected customers has not yet been confirmed by the company.
Initial Disclosure and Response
The breach was first announced by the hackers, who posted an advert for the stolen data on Wednesday evening. Ticketmaster initially refused to confirm the breach to reporters or customers, opting instead to notify shareholders late on Friday.
The Australian government has stated it is working with Ticketmaster to address the issue, and the FBI has offered assistance.A spokesperson for the FBI told the BBC that there was no comment on the matter.
Meanwhile, Live Nation has assured that it is notifying users about the unauthorized access to their personal information and taking steps to mitigate the impact.
Potential Impact on Business Operations
Live Nation stated in its filing, “As of the date of this filing, the incident has not had, and we do not believe it is reasonably likely to have, a material impact on our overall business operations or on our financial condition or results of operations.
We continue to evaluate the risks, and our remediation efforts are ongoing.”Ticketmaster, one of the largest online ticket sales platforms globally, faces one of the biggest hacks in history in terms of the number of victims.
It is still unknown how sensitive the stolen data is and to what extent cybercriminals can use it.
Connection to Larger Hacks
Researchers have cautioned that this breach is a part of a larger ongoing hack involving the cloud service provider Snowflake, which many large firms use to store data. Snowflake has notified customers about a breach but has not disclosed which firms are affected.
Recently, Santander confirmed that the same group responsible for the Ticketmaster hack had stolen and sold data from an estimated 30 million customers. It is believed that these hacks are interconnected, and more companies could be impacted.
ShinyHunters’ History of Cyber-Attacks
ShinyHunters has been linked to numerous high-profile data breaches, resulting in millions of dollars in losses for the companies involved.
In 2021, the group sold a genuine database of stolen information from 70 million customers of US telecoms firm AT&T. In September last year, almost 200,000 Pizza Hut customers in Australia had their data breached.
Despite the FBI’s crackdown on the group in March 2023, which led to the arrest of its administrator, Conor Brian Fitzpatrick, the hacking forum BreachForums has re-emerged.
Protecting Yourself
If you are concerned that you may be a victim of the Ticketmaster hack, it is important to stay alert and take precautionary measures:
Watch out for bogus emails, messages, and phone calls. Hackers often use stolen details to trick victims into revealing more information.
Be cautious of official-sounding messages about “resetting passwords,” “receiving compensation,” “scanning devices,” or “missed deliveries.”
Be wary of emails filled with technical jargon designed to sound convincing.
Avoid acting immediately or within a limited timeframe without verifying the authenticity of the request.
Previous Security Issues at Ticketmaster
This is not the first time Ticketmaster has faced security challenges. In 2020, the company admitted to hacking into one of its competitors and agreed to pay a $10 million fine.
In November, Ticketmaster allegedly experienced a cyber-attack that caused problems selling tickets for Taylor Swift’s Era tour. Earlier this month, US regulators sued Live Nation, accusing the company of using illegal tactics to maintain a monopoly over the live music industry.
The Ticketmaster data breach highlights the growing threat of cyber-attacks and the importance of robust security measures. As Live Nation and authorities work to address the issue, customers are advised to stay vigilant and take steps to protect their personal information. This incident serves as a stark reminder of the need for continued vigilance in the digital age.
The information is taken from Yahoo News and AOL