Entertainment giant Live Nation has confirmed that its ticketing subsidiary Ticketmaster has been hacked.
Live Nation confirmed the data breach in a filing with government regulators after markets closed on Friday.
In statement ofLive Nation said the breach occurred on May 20 and that a cybercriminal “offered the company’s user data for sale via the dark web.” The company did not say whose personal information was exposed, though it is believed to belong to customers. It is unclear why it took the company more than a week to publicly disclose the breach.
Live Nation said in its statement that it had “identified unauthorized activity in a third-party cloud database environment containing company data.”
The company did not name the third-party cloud database in its statement.
A Ticketmaster spokesperson, who declined to be named but responded from the company’s media email address, told TechCrunch that their stolen database was hosted on a snowflakeBoston-based cloud storage and analytics company.
A Ticketmaster spokesperson did not say how the data was extracted from Snowflake’s systems.
a snowflake said in a post on Friday It had notified a “limited number of customers who we believe may have been impacted” by attacks targeting some of our customers’ accounts. Snowflake did not describe the nature of the attacks, or say whether data from customer accounts was stolen.
Snowflake spokeswoman Danica Stanczak declined to comment about the Ticketmaster breach.
Amazon Web Services also hosts much of the infrastructure for Live Nation and Ticketmaster, according to the report. A deleted customer case study on the Amazon website.
Earlier this week, an administrator said Reviving popular cybercrime forum A firm called BreachForums claimed to have sold personal information of 560 million customers, including alleged personal information of Ticketmaster customers, ticket sales and customer card information.
So far, Live Nation has not commented on the data breach. Earlier this week, Australian authorities confirmed they were assisting Live Nation with the cybersecurity incident, and US cybersecurity agency CISA declined to comment to Live Nation.
TechCrunch on Friday obtained a portion of the allegedly stolen data that contains thousands of records including email addresses. This included many internal Ticketmaster email addresses used for testing, which are not public but appear to be real Ticketmaster accounts. TechCrunch confirmed on Friday that the records we examined belong to Ticketmaster customers.
TechCrunch checked the validity of these accounts by running internal email addresses through Ticketmaster’s sign-up form. All of the accounts turned out to be real. (If someone enters an email address that is already a real Ticketmaster account, Ticketmaster displays an error.)
Earlier in May, the Justice Department and 30 attorneys general sued Live Nation to break up the ticketing group. Live Nation accused of monopolistic behavior,
Updated with Ticketmaster’s response and Snowflake’s decline.
Do you know more about the Live Nation Ticketmaster breach? Get in touch. To contact this reporter, call +1 646-755-8849 on Signal and WhatsApp, or by email. You can also send files and documents via SecureDrop,
live-nation-confirms-ticketmaster-was-hacked-says-personal-information-stolen-in-data-breach-techcrunch
