June 24, 2024 at 12:56PM
ShinyHunters has reportedly targeted Ticketek in Australia, compromising data for about 30 million users. The breach, similar to the Ticketmaster incident, occurred through a third-party cloud provider. No user accounts were compromised, and payment information was not accessed. The connection to Snowflake and ShinyHunters remains unconfirmed.
Based on the meeting notes, the ShinyHunters cybercrime gang has claimed responsibility for a cyberattack on Ticketek, an Australian live events ticketing organization. The breach, disclosed by Ticketek Entertainment Group (TEG) in late May, resulted in the theft of customer names, dates of birth, and email addresses. It is noted that no user accounts or payment information were compromised in the incident.
The circumstances of the breach are reminiscent of the Ticketmaster breach, also linked to ShinyHunters, which affected 560 million customers. Both breaches were attributed to the compromise of a third-party cloud provider, specifically, Snowflake. Researchers have associated these incidents with a larger cyber campaign targeting poorly secured Snowflake accounts across multiple organizations.
However, TEG has not confirmed a Snowflake connection or ShinyHunters as the perpetrator of the cyberattack. It is worth noting that a case study from 2022 names Snowflake as a technology partner for Ticketek, although neither company has provided immediate comment to Dark Reading.