Ticketmaster data breach: 560 million users' info for sale

Entertainment conglomerate Live Nation has confirmed a data breach of its subsidiary, Ticketmaster. The breach occurred on May 20, and the cybercriminal responsible has offered user data for sale on the dark web.

As reported by TechCrunch, Live Nation disclosed the incident to regulatory authorities only after more than a week had passed.

Live Nation detected unauthorized activity in a database managed by an external cloud provider without revealing its name. In response to TechCrunch inquiries, a Ticketmaster spokesperson confirmed that the database was hosted on servers by Snowflake, a company specializing in data storage and analysis.

Snowflake stated that the attack might have affected a limited number of customers but did not provide further details. Snowflake spokesperson Danica Stanczak declined to comment specifically on the Ticketmaster incident. Similarly, Live Nation and Ticketmaster representatives have not publicly commented on the specifics of the breach.

Information provided on the Ticketmaster website indicates that Live Nation Entertainment is a global leader in live entertainment. It consists of five companies operating in concert promotion, event venue management, sponsorship, ticket distribution, e-commerce, and artist management.

The administrator of the popular cybercriminal forum BreachForums claims to possess data on 560 million customers, including information on Ticketmaster users such as ticket sales and payment card data. TechCrunch obtained some of this data, which was verified as authentic after email address verification.

In May, the Department of Justice and 30 state attorneys general filed a lawsuit against Live Nation, accusing the company of monopolistic practices.