ShinyHunters, the current administrator of BreachForums<\/a>, recently claimed the hack of Ticketmaster<\/a> and offered for sale 1.3 TB of data, including full details of 560 million customers, for $500,000. Stolen data includes names, emails, addresses, phone numbers, ticket sales, and order details.<\/p>\n\n\n\n
The stolen data were offered for sale on the dark web<\/a> a week later.<\/p>\n\n\n\n
“On May 20, 2024, Live Nation Entertainment, Inc. (the \u201cCompany\u201d or \u201cwe\u201d) identified unauthorized activity within a third-party cloud database environment containing Company data (primarily from its Ticketmaster L.L.C. subsidiary) and launched an investigation with industry-leading forensic investigators to understand what happened.” reads the form 8-K filing<\/strong><\/a> to the US Securities and Exchange Commission.
Live Nation notified regulatory authorities and impacted users.<\/p>\n\n\n\n
Bleeping Computer reported<\/a> that ShinyHunters told Hudson Rock Co-Founder Alon Gal that he breached both Santander <\/a>and Ticketmaster. The threat actor revealed that the data was stolen from cloud storage company Snowflake by using credentials obtained through information-stealing malware to access a Snowflake employee’s ServiceNow account. The threat actors used to credential to exfiltrate data, including auth tokens for accessing customer accounts. The threat actor also claimed to have used this method to steal data from other companies.
Follow me on Twitter: @securityaffairs<\/strong><\/a> and Facebook<\/strong><\/a> and Mastodon<\/a><\/p>\n\n\n\n
Pierluigi Paganini<\/strong><\/a><\/p>\n\n\n\n
(<\/strong>SecurityAffairs<\/strong><\/a> \u2013<\/strong> hacking, ShinyHunters)<\/strong>