The ShinyHunters hacker group claims the Ticketmaster breach is way larger than beforehand anticipated, stealing 193 million barcodes, together with 440,000 Taylor Swift tickets. Valued at $22 billion, they now demand $8 million from LiveNation!
In Could 2024, the infamous hacker group ShinyHunters breached Ticketmaster – LiveNation, as we all know it. Nonetheless, the hackers have now launched new particulars concerning the extent of their breach. These particulars have been revealed on the notorious cybercrime and hacker platform Breach Boards titled “Ticketmaster occasion barcodes ‘Taylor Swift’ pt 1/65000.”
ShinyHunters on Breach Boards (Screenshot: Hackread.com)
The Breach Unveiled
ShinyHunters marked the Fourth of July with a disturbing announcement: they declare to have stolen 440,000 tickets for Taylor Swift’s Eras Tour. In a symbolic twist, they counsel that as a substitute of Swift acting on her tour, she will probably be “performing in entrance of Congress,” indicating this breach’s severity and public publicity.
The Staggering Numbers
The hackers present an intensive breakdown of their hack:
Complete Exfiltrated Barcodes: 193 million
Complete Worth of Stolen Tickets (TKT_FACE_VAL_AMT): $22,695,713,141.00 USD
A Shift in Negotiations
In response to ShinyHunters, the hackers initially accepted a rushed $1 million supply from LiveNation to maintain the breach underneath wraps. Nonetheless, realizing the true worth of the information they possess, they’ve escalated their demand to $8 million. They justify this enhance by mentioning that they’ve discovered methods to make the breach extra expensive and complex for the affected firm.
Expanded Scope
Along with the Taylor Swift tickets, ShinyHunters claims to have:
30 million tickets for 65,000 occasions: Much like the Swift tickets, valued at $4,665,615,212.00 USD
Information at Danger
The hackers have detailed the in depth nature of the stolen information, which incorporates:
980 million gross sales orders
680 million orders element
1.2 billion occasion lookup data
440 million distinctive e mail addresses
4 million uncased and deduped data
560 million AVS (Tackle Verification System) element data
400 million encrypted bank card particulars with partial data
They boast that this breach is the most important publicly disclosed non-scrape breach of buyer Personally Identifiable Info (PII) so far.
Screenshot from the leaked file (Screenshot: Hackread.com)
Disclosure:
Hackread.com believes in transparency; subsequently, we’re publicly revealing that we used ChatGPT-4o to investigate the leaked information because of its complexity. Right here’s the breakdown and conclusion:
The leaked information incorporates detailed details about ticket gross sales for Taylor Swift’s Eras Tour occasion, particularly for a live performance at Lucas Oil Stadium in Indianapolis, Indiana. Here’s a breakdown of the important thing information fields current within the leak:Occasion Particulars:EVENT_ID_SRC_SYS_CD: Supply system code for the occasion.EVENT_START: Date and time of the occasion.EVENT_KEY: Distinctive identifier for the occasion.EVENT_HEX: Hexadecimal illustration of the occasion ID.EVENT_ID: Numeric ID of the occasion.EVENT_NAME: Identify of the occasion (Taylor Swift | The Eras Tour).EVENT_TIMEZONE: Timezone of the occasion.EVENT_MULTIPLEDAYS: Indicator if the occasion spans a number of days.EVENT_VENUE_NAME: Venue title.EVENT_VENUE_COUNTRY: Nation the place the occasion is situated.EVENT_VENUE_STATE: State the place the occasion is situated.EVENT_VENUE_CITY: Metropolis the place the occasion is situated.EVENT_VENUE_POSTCODE: Postcode of the occasion venue.EVENT_VENUE_ADDR1: Tackle line 1 of the venue.EVENT_VENUE_ADDR2: Tackle line 2 of the venue (if relevant).EVENT_VENUE_LONG: Longitude of the occasion venue.EVENT_VENUE_LAT: Latitude of the occasion venue.Ticket Particulars:SALES_ORD_ID: Gross sales order ID.SALES_ORD_TRAN_ID: Transaction ID associated to the gross sales order.BASE_TKT_TYPE_CD: Base ticket sort code.EXTENDED_TKT_TYPE_CD: Prolonged ticket sort code.TKT_BARCODE_VAL: Barcode worth for the ticket.SECT_NAME: Part title the place the seat is situated.ROW_NUM: Row variety of the seat.SEAT_NUM: Seat quantity.XNUM_CD: Further numerical code associated to the seat.VEN_ID: Venue ID.HOST_SYS_CD: Host system code.HOST_VAX_ACCT_NUM: Host VAX account quantity.HOST_ACCT_CREATE_DT: Date when the host account was created.TKT_FACE_VAL_AMT: Face worth quantity of the ticket.TRAN_VOID_FLG: Indicator if the transaction was voided.TRAN_VOID_DT: Date when the transaction was voided (if relevant).CPN_CAT_ID: Coupon class ID.CPN_PWD_PRIM_VAL: Major worth of the coupon password.QUALIFIER_NAME1/2/3: Qualifier names.QUALIFIER_COMBO_ID: Qualifier combo ID.EVENT_VENUE_KEY: Venue key.Potential Makes use of of the DataThe barcode values (TKT_BARCODE_VAL) and seat particulars (part, row, seat numbers) can be utilized to create counterfeit tickets or resell tickets fraudulently.Id Theft and Monetary Fraud:The information contains host account creation dates and VAX account numbers, which may very well be leveraged to establish and exploit consumer accounts.Phishing and Social Engineering Assaults:With detailed private data, attackers can craft convincing phishing emails or social engineering assaults focusing on ticket patrons.Market Evaluation and Competitor Intelligence:Opponents can analyze the pricing (TKT_FACE_VAL_AMT), seating preparations, and gross sales information to know Ticketmaster’s market methods.Fame Injury:Public disclosure of this information can considerably hurt Ticketmaster’s popularity, inflicting lack of buyer belief and future enterprise.The publicity of personally identifiable data (PII) would possibly end in substantial fines from regulatory our bodies and authorized actions from affected clients.ConclusionThe leaked information is very delicate and may be exploited in quite a few malicious methods, from direct monetary fraud to broader market implications and vital reputational harm for Ticketmaster. Rapid steps to mitigate these dangers and shield affected clients are essential.
UPDATE July 5, 2024
A Breach Discussion board consumer utilizing the alias “Sp1d3rHunters,” believed to be a part of the ShinyHunters group (although this stays unconfirmed), has revealed one other itemizing claiming to have leaked 170,000 Taylor Swift ERAS Tour occasion barcodes. Sp1d3rHunters is demanding a $2 million ransom for this information.
The leak, as per the hacker, contains ticketing information for occasions in Miami, New Orleans, and Indianapolis. Right here’s the breakdown:
Taylor Swift – October 18, 2024, Miami – 20,000 tickets
Taylor Swift – October 19, 2024, Miami – 20,000 tickets
Taylor Swift – October 20, 2024, Miami – 23,000 tickets
Taylor Swift – October 26, 2024, New Orleans – 16,000 tickets
Taylor Swift – October 27, 2024, New Orleans – 16,000 tickets
Taylor Swift – October 28, 2024, New Orleans – 18k tickets
Taylor Swift – November 01, 2024, Indianapolis – 18,000 tickets
Taylor Swift – November 02, 2024, Indianapolis – 17,000 tickets
Taylor Swift – November 03, 2024, Indianapolis – 18,000 tickets
Sp1d3rHunters on Breach Boards (Screenshot: Hackread.com)
Ticketmaster Breached by 2 Events?
It’s value noting that Sp1d3rHunters is similar hacker who, on June 20, 2024, leaked 1 million Ticketmaster consumer data from the unique 650 million data initially stolen by the menace actors.
If Sp1d3rHunters is certainly a part of the ShinyHunters group, it’s unclear why the group is making two separate ransom calls for, with one member asking for $2 million and one other in search of $8 million. Within the worst-case state of affairs, Ticketmaster was breached by two completely different teams, and now its information is being held for ransom by two separate events.
Implications for Ticketmaster and Prospects
This breach may have extreme implications for Ticketmaster and its clients:
Monetary Loss: The face worth of the stolen tickets alone quantities to billions of {dollars}. Moreover, the potential prices of managing the breach, compensating affected clients, and potential fines may very well be astronomical.
Fame Injury: Such a high-profile breach can severely harm Ticketmaster’s popularity, resulting in lack of buyer belief and future enterprise.
Buyer Influence: The stolen information contains extremely delicate data, akin to encrypted bank card particulars and private e mail addresses, placing thousands and thousands of shoppers vulnerable to identification theft and monetary fraud.
Elevated Safety Measures: This breach underscores the necessity for enhanced safety measures inside the firm to forestall future incidents.
The ShinyHunters’ breach of Ticketmaster goes on to indicate the cybersecurity menace posed by cybercriminals. Though Ticketmaster beforehand acknowledged the breach, because the state of affairs develops, it will likely be needed for Ticketmaster to handle the breach transparently, improve its safety protocols, and work in the direction of restoring buyer belief. In the meantime, clients ought to stay alert and monitor their accounts for any suspicious exercise.
For extra updates on this growing story, keep tuned!
RELATED TOPICS
BreachForums Returns Underneath ShinyHunters Hackers
Alleged ShinyHunters Hacker Group Member Arrested
TEG Ticket Vendor Breach: 30M Person Information for Sale
ShinyHunters Leak 33 Million Twilio Authy Cellphone Numbers
ShinyHunters Hacks Santander Financial institution: 30M Person Information for Sale
ShinyHunters leak database of Indian marriage ceremony web site WedMeGood
AT&T breach ShinyHunters promoting AT&T database with 70M SSN