Ticketmaster has started to notify customers who were impacted by a data breach after hackers stole the company's Snowflake database, containing the data of millions of people.
Last month, a threat actor known as ShinyHunters began selling stolen data from Live Nation/Ticketmaster, claiming it contained the personal information and credit card information of 560 million users.
The threat actors used compromised Ticketmaster credentials that did not have multi-factor authentication enabled to steal the data from their Snowflake account.
Snowflake is a cloud-based data warehousing company used by the enterprise to store databases, process data, and perform analytics.
ShinyHunters began selling the data on May 28 on a well-known hacking forum for $500,000.
The threat actor claimed that the data was 1.3TB and contained information for 560 million customers, ticket sales, event information, customer fraud, and partial credit card information.
After remaining silent for days, Ticketmaster eventually confirmed the breach on May 31, in a Friday evening SEC filing, stating that they did not believe the breach would have a material impact on their company.
Ticketmaster's breach is one of many recent data theft attacks linked to the Snowflake database platform.
A joint investigation by SnowFlake, Mandiant, and CrowdStrike revealed that a threat actor, tracked as UNC5537, used compromised customer credentials to target at least 165 organizations that had not configured multi-factor authentication protection on their accounts.
To breach Snowflake accounts, the threat actor used credentials stolen by information-stealing malware infections dating back to 2020.
Ticketmaster confirms massive breach after stolen data for sale online.
Advance Auto Parts confirms data breach exposed employee information.
Neiman Marcus confirms data breach after Snowflake account hack.
Cylance confirms data breach linked to 'third-party' platform.
Pure Storage confirms data breach after Snowflake account hack.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Fri, 28 Jun 2024 16:50:20 +0000