The Ticketmaster Databreach: Explained

July 24, 2024

Information on the Data Breach

In late June of 2024, Ticketmaster, an American ticket sales and distribution company, notified their users of a data breach that resulted in 560 million users’ data being leaked. In a regulatory filing with the U.S. Securities and Exchange Commission (SEC), the company stated that “a criminal threat actor” offered to sell users’ information on the dark web. Before the official announcement on May 28, a hacking group called ShinyHunters claimed responsibility. ShinyHunters is an international cyber threat group that has claimed to have breached large corporate companies such as Microsoft and AT&T. The group sought $500,000 for the 1.3TB of Ticketmaster’s customer information, including addresses, phone numbers, and credit card details.

Ticketmaster’s parent company, Live Entertainment, confirmed that the data breach happened because of unauthorized access to a third-party cloud storage platform. Although Live Entertainment has not stated which third-party database leaked the information, it is speculated that the AI cloud database platform, Snowflake, was compromised.

What is Ticketmaster Doing?

On Ticketmaster’s official website, they advise customers affected by the data breach to monitor bank accounts for suspicious transactions. If any suspicious transaction occurs, they urge affected parties to contact their banks or credit card companies for assistance. They also stated to be cautious of emails with “unusual content” that may be targeted phishing schemes now that their email addresses are public.

Ticketmaster has reassured their customers that their accounts remain secure and that after investigation there has been no more unauthorized activity. As a further attempt to rectify things, Ticketmaster offered affected users a free 12-month identity monitoring service.

Ways to Protect Yourself

Data breaches in big companies like Ticketmaster, AT&T, and Microsoft are becoming more frequent with the new development of technology. Here are some ways to prevent your information from being leaked:

Strong Passwords

Unique passwords for each account make it so that if one account is compromised it will not lead to all of your accounts being compromised. Changing passwords frequently adds an extra layer of security to your accounts. Adding symbols, a mix of uppercase and lowercase letters, and numbers to your passwords also helps prevent your accounts from being compromised.

Be Cautious

Being vigilant for phishing emails and scams also helps you protect your information. The term "phishing" refers to fake emails pretending to be real, or pretending to be from a verified sender, such as Microsoft or Amazon. Do not give your information out to suspicious websites or forms. Look out for unusual charges on bank accounts and credit cards. If they occur, contact the bank or credit card company immediately.

Delete Unused Accounts

Unused accounts can be a liability. If the company or service you have an account with becomes compromised, your information will be compromised as well. This could include emails, phone numbers, and answers to security questions. Deleting unused accounts greatly increases online privacy and security.

Research

Knowing who you give your information to is important. Make sure you research the company, especially if you are providing them with payment information. If they have had data breaches before, be wary of their security regarding your information. It is important to know the company's credibility and make an informed decision with your information.

    Conclusion

    Staying informed about these events can help protect your information. It is important to know the company's credibility and how to protect yourself. Remembering the best online security practices can help reduce liability and protect your digital identity. You are your first line of defense against these data breaches.

    Sources

    https://help.ticketmaster.com/hc/en-us/articles/26110487861137-Ticketmaster-Data-Security-Incident

    https://www.bitdefender.com/blog/hotforsecurity/ticketmaster-starts-notifying-data-breach-victims-customers-in-the-us-canada-and-mexico-are-affected/

    https://time.com/6984811/ticketmaster-data-breach-customers-livenation-everything-to-know/

    https://www.securityweek.com/snowflake-hack-impacts-ticketmaster-other-organizations/

    Hayden Duplantier, Associate Information Security Analyst

    Hayden is beginning his cybersecurity career as an Associate ISA on Team Atlas, starting out performing remote social engineering tests. He is currently earning a Bachelor of Science in Computer Science from Louisiana State University, expected to graduate in May 2025. He is currently working toward his Security+ certification, and also plans to pursue a Masters in Cybersecurity from LSU.