«
»

Oh My! TicketMaster Has Apparently Been Pwned Big Time

Recently, threat actors who go by the name of ShinyHunters claimed to have pwned TicketMaster breached and claimed to have compromised 560 million users which is part of a 1.3 TB database. ShinyHunters have claimed to have exfiltrated full names, phone numbers, home addresses, email addresses, payment card info, ticket sales and event information, and order information. The stolen data is being sold on BreachForms for $500,000.

While the threat group has contacted Ticketmaster, they have not yet acknowledged the incident publicly. Ticketmaster has faced cyber incidents in the past, including a bot attack against the ticketing system, disrupting Taylor Swift concert ticket sales. Which makes their problems with the US Justice Department seem trivial in comparison.

Darren Williams, CEO and Founder, BlackFog:

“The breach of TicketMaster shows us how large-scale these operations can be. Now that the data has been exfiltrated from TicketMaster, the threat group can continuously target the individuals through social engineering and phishing attempts. Large entities, especially those such as TicketMaster, must invest in anti data exfiltration technology to ensure no data is leaving their system without proper authorization.”

TicketMaster needs to say something. As in confirming what we already know and what they are going to do to ensure that they don’t get pwned again. They may not think that they have to say anything. But if they don’t, I guarantee that their troubles will multiply.

UPDATE: Ted Miracco, CEO, Approov Mobile Security had this to say:

   “Ticketmaster and LiveNation are not alone. ShinyHunters, a notorious black-hat hacking group, has claimed responsibility for major data breaches at companies including Microsoft, Tokopedia, Wattpad, Pluto TV, Animal Jam, Mashable, and many others. ShinyHunters employ sophisticated techniques like exploiting GitHub repositories, unsecured cloud storage, phishing attacks, and stealing credentials/API keys to gain unauthorized access.

   “The sophistication of these attacks underscores the necessity for robust security practices, including both cloud based API security used in combination with robust edge based security including mobile app attestation and runtime application self-protection (RASP) to defend against such attacks.”  

This entry was posted on May 30, 2024 at 8:55 am and is filed under Commentary with tags . You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

3 Responses to “Oh My! TicketMaster Has Apparently Been Pwned Big Time”

  1. Snowflake Data Breaches Makes The News This Week | The IT Nerd Says:
    June 1, 2024 at 9:47 am

    […] to gain access to data from other high-profile Snowflake customers. I wrote about Ticketmaster here, and Santander here if you want to get up to speed on […]

    Reply
  2. You Know You’re Going To Have A Bad Day When You Get A Data Breach Notification In Your Inbox | The IT Nerd Says:
    July 9, 2024 at 8:43 am

    […] data breach notification comes from Ticketmaster who recently got pwned in epic fashion. I haven’t dealt with Ticketmaster for years. In fact, the last time I dealt […]

    Reply
  3. Pretty Much Every AT&T Customer Has Had Their Data Stolen By Hackers | The IT Nerd Says:
    July 12, 2024 at 8:32 am

    […] apparently become the latest victim of the Snowflake attacks that have been making the news lately. Ticketmaster for example is reportedly another victim of these Snowflake […]

    Reply

Leave a Reply

Discover more from The IT Nerd

Subscribe now to keep reading and get access to the full archive.

Continue reading