No Evidence User Data Was Stolen in Attack
Earlier this week, hackers on a “dark web” internet site claimed to have stolen information from hundreds of millions of Ticketmaster user accounts — but a supply with know-how of the investigation into the attack says there is no proof that Ticketmaster fan accounts have been compromised or that private user information was stolen.
Officials at Ticketmaster’s parent enterprise, Live Nation, acknowledged a breach Friday (May 31) in a Securities and Exchange Commission (SEC) filing, noting it had identified “unauthorized activity within a third-party cloud database environment containing Company data (primarily from its Ticketmaster L.L.C. subsidiary) and launched an investigation with industry-leading forensic investigators to understand what happened.”
The statement noted that the enterprise was “cooperating with law enforcement” and that “as of the date of this filing, the incident has not had, and we do not believe it is reasonably likely to have, a material impact on our overall business operations or on our financial condition or results of operations.”
According to the supply, federal authorities are at present operating to have an understanding of how a “dark web” internet site seized by the federal government was recaptured on Monday (May 27) by hackers with the group ShinyHunters and utilised to ransom 1.3 terabytes of private information allegedly stolen from Ticketmaster for $500,000. Investigators are not confident what, if any, Ticketmaster files are becoming held in the 1.3 terabyte file, the supply adds.
The hack, the supply tells Billboard, did not involve a breach of the core Ticketmaster method. Rather, enterprise officials are seeking at cloud hosting service Snowflake as a achievable internet site of the hack. A hacker claiming to be involved in the attack told the site Bleeping Computer that they had breached Santander Bank and Ticketmaster after hacking into an employee’s account at Snowflake, which delivers cloud hosting solutions for significant firms. According to that report, Snowflake is disputing the claim. Billboard independently confirmed that Ticketmaster utilizes Snowflake’s cloud hosting service.
When reached for comment, Live Nation directed Billboard back to the SEC filing. Snowflake did not respond to a request for comment by press time.
Australian ticketing firm Ticketek also reported Friday that it had fallen victim to hackers, notifying clients that the names of some of its customers, as nicely as their dates of birth and e mail addresses, might have been accessed in a information breach. In a statement on its internet site, Ticketet stated the user info had been stored in a cloud-primarily based platform hosted by a “reputable, global third-party supplier”.
“Ticketek has secure encryption methods in place for all passwords and no Ticketek customer account has been compromised,” enterprise officials stated in a statement. “Additionally, Ticketek utilises secure encryption methods for online payments and uses a separate system to process online payments, which has not been impacted. Ticketek does not hold identity documents for its customers.”