‘ShinyHunters’ Group Claims Massive Ticketmaster Breach

The group claims to have stolen sensitive data from more than half of a billion Ticketmaster customers. Ticketmaster and its parent company Live Nation have yet to confirm the breach.

InformationWeek

May 30, 2024

2 Min Read
ticketmaster app on a smartphone
Alamy

A hacking group named ShinyHunters claimed in an online forum that they breached Ticketmaster this week, allegedly stealing data that includes names, addresses, phone numbers, and partial credit card information from 560 million customers worldwide.

The group says it’s selling the 1.3-terabyte trove of data in a “one-time sale” for $500,000. ShinyHunters is well-known to the cybersecurity community with several large breaches under its belt since first appearing in 2020. The Australia Home Affairs Department said Thursday it is investigating.

“The Australian Government is aware of a cyber incident impacting Ticketmaster,” a spokesman for the department said in a statement. “The National Office of Cyber Security is engaging with Ticketmaster to understand the incident.”

The Australian government is the first to announce action, likely because the country has been struck by the group before. Last year, ShinyHunters breached Pizza Hut and stole data from 193,000 Australian customers.

While neither Ticketmaster nor parent company Live Nation have confirmed the breach, new rules by the Security and Exchange Commission require that companies disclose cybersecurity incidents within 4-business days.

In a profile posted on its website, cybersecurity firm SOCRadar said ShinyHunters allegedly also runs one of the most popular hacker forums, BreachForums. “This group, at first glance, might seem like a benign assembly of Pokémon enthusiasts, given their name … Yet, they stand accused of orchestrating data breaches that have consistently found their way onto hacker forums.”

Related:Best Practices for Surviving a Cyber Breach

Matt Hull, global head of threat intelligence at NCC Group, in an email says the ShinyHunters group has been behind several large-scale breaches, and “despite being relatively fresh on the scene, are responsible for some notable hacks, including Microsoft, AT&T, and now, allegedly, Ticketmaster.” The 2021 AT&T breach compromised information from more than 70 million customers.

Hull says the FBI and international law enforcement has been tracking the group, noting that in 2023, a 21-year-old French national was extradited from Morocco to the US for his alleged role in ShinyHunters’ activities.

Continue reading this article on InformationWeek

Read more about:

InformationWeek

About the Author(s)

InformationWeek

InformationWeek, a sister site to ITPro Today/Data Center Knowledge, is a trusted source for CIOs and IT leaders seeking comprehensive and authentic coverage of the constantly evolving world of technology and its impact on business. Our experienced and ethical journalists conduct in-depth examinations of crucial issues and the impact of global events on IT operations and strategies, helping forward-thinking executives stay at the forefront of their industries. InformationWeek also provides a platform for enterprise IT leaders and leading tech companies to share their insights and experiences through exclusive interviews, opinion pieces, and events, offering firsthand accounts of strategies, trends, and innovations.

Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.

You May Also Like