Ticketmaster has confirmed a significant data breach affecting customers who purchased tickets for events in North America (U.S., Canada, and Mexico). The breach was discovered in a third-party cloud database managed by Snowflake, a cloud data storage firm.

The compromised information includes:

• Email addresses
• Phone numbers
• Encrypted credit/debit card numbers and expiration dates
• Personal information provided during transactions
• Customer names and addresses
• Event details and ticket sales data

The breach occurred when a Belarusian contractor for Snowflake was compromised, affecting 165 companies including Ticketmaster. The hacking group ShinyHunters claims to have obtained a 1.3TB database, which was reportedly offered for sale on the dark web for $500,000.

In response, Ticketmaster is:

• Working with cybersecurity experts and authorities
• Offering affected customers 12 months of free TransUnion credit monitoring (must enroll within 90 days of notification)
• Investigating the breach alongside parent company Live Nation

A lawsuit has been filed by California residents Cynthia Ryan and Rosalia Garcia against Live Nation and Ticketmaster, alleging failure to properly secure customer data. Live Nation has confirmed in a regulatory filing that a "criminal threat actor" attempted to sell Ticketmaster data on the dark web.

Related Articles

Previous Articles