Ticketmaster Confirms Cloud Breach, Amid Murky Details

Ticketmaster Confirms Cloud Breach, Amid Murky Details

June 3, 2024 at 01:30PM

Live Nation confirmed the breach of a third-party cloud database containing customer data, with ShinyHunters claiming to have over half a billion Ticketmaster records for sale. The type of data and its impact remain undisclosed. Snowflake, the affected database, attributes the attack to poor customer configuration, impacting various high-profile clients. The breach and its implications are still unclear.

Based on the meeting notes, the key takeaways are as follows:

1. ShinyHunters, a hack-and-leak ring, claimed to have obtained data on over 560 million Ticketmaster customers and offered it for sale on the BreachForums underground market.
2. Live Nation, Ticketmaster’s parent company, acknowledged the breach and filed a data breach disclosure notice with the SEC. However, it confirmed few details and does not expect the breach to have a material impact on its financial profile going forward.
3. The breach involved unauthorized activity within a third-party cloud database, specifically identified as Snowflake, due to poor customer configuration and the use of single-factor authentication.
4. There is little confirmation regarding the exact details of the breach, the affected parties, and the role of ShinyHunters in the incident.
5. Live Nation is working to mitigate the risk to its users and the company, cooperating with law enforcement, and notifying regulatory authorities and affected users of the unauthorized access to personal information.

Feel free to let me know if you need any further details or clarifications.

Full Article