Ticketmaster Data Breach: Hackers Selling Info of 560M Users for $500K - IT GOAT

Ticketmaster Data Breach: Hackers Selling Info of 560M Users for $500K

Detailed Breakdown of the Breach

A notorious hacker group known as ShinyHunters has allegedly breached Ticketmaster’s systems, compromising sensitive information of over 500 million users.

What Was Stolen?

ShinyHunters claims to have obtained a massive cache of data from Ticketmaster, involving detailed customer information. The stolen data reportedly includes:

  • Full names, addresses, email addresses, phone numbers, ticket sales, and event details.
  • Order history information, including details about ticket purchases and event specifics.
  • Partial payment data, such as the names on cards, the last four digits of credit card numbers, and their expiration dates.


The amount of data totals 1.3 terabytes. The hackers have listed the data at a market price of $500,000 on a popular hacking forum, posing a severe risk of identity theft and financial fraud for millions.

The Hack's Execution: How Did It Happen?

The exact method used by ShinyHunters to penetrate Ticketmaster’s defenses remains unclear. Ticketmaster has not officially responded to the claims, leaving the specifics of the breach somewhat mysterious. Australian authorities have acknowledged a cyber incident affecting Ticketmaster customers, hinting at the international implications of the breach.

Background On ShinyHunters: Not Their First Rodeo

ShinyHunters is well-known in cybersecurity circles for their high-profile breaches and the operation of Breach Forums, a hotspot for cybercriminal activities. Despite law enforcement efforts, including the FBI’s attempt to shut down the forum, ShinyHunters has demonstrated resilience and technical skill by reclaiming and reviving their platform, underscoring the persistent threat they pose.

Ticketmaster's Troubled Past with Cybersecurity: Previous Incidents

This is not the first cybersecurity fiasco for Ticketmaster. The company has a history of both falling victim to and perpetrating unauthorized access:

  • In January 2021, Ticketmaster settled for $10 million after being accused of hacking a rival company, SongKick.
  • In January 2023, Ticketmaster reported disruptions caused by bot attacks during ticket sales for Taylor Swift’s concerts. These incidents paint a picture of a company repeatedly struggling with cybersecurity challenges.

Legal and Consumer Fallout: The Bigger Picture

This latest security incident comes at a time when Ticketmaster is already under legal scrutiny. The DOJ’s lawsuit alleges that Live Nation-Ticketmaster’s practices monopolize the live concert industry, compounding the public relations and legal challenges for the company. This breach could potentially influence the lawsuit’s proceedings and impact consumer trust severely.

User Advice: Immediate Steps for Consumers

Users affected by the breach should take precautions to secure their financial accounts, update passwords, and be vigilant about potential phishing attempts. As for Ticketmaster, the company faces the urgent task of regaining user trust through transparency, prompt communication, and robust security enhancements.

Steps for Consumers to Protect Themselves After a Data Breach

Monitor Your Accounts: Regularly check your bank statements, credit card records, and any financial transactions for unauthorized activity.

Change Passwords and Update Security Settings: Change your passwords immediately for Ticketmaster and any other accounts where you might have reused the same passwords. Use strong, unique passwords for each account and consider using a password manager to keep track of them. Enable two-factor authentication (2FA) when available to add an extra layer of security.

Beware of Phishing Attempts: Be on high alert for phishing emails or messages. Cybercriminals could leverage stolen email addresses to send phishing messages, trying to trick you into providing personal information or clicking on malicious links. Always verify the authenticity of any communication that requests your personal information and do not click on links from unknown or suspicious sources.

Breach Results - UPDATED

Q1: How was Ticketmaster breached?

The breach involved unauthorized access to Ticketmaster’s systems via a third-party cloud database. The incident was discovered when an unidentified threat group exploited vulnerabilities in the Managed Service Provider connected to Ticketmaster, allowing them to access Ticketmaster’s AWS instances. The breach led to the potential exposure of sensitive customer data, which was then offered for sale on cybercrime forums.

Q2: What steps has Ticketmaster taken since discovering the breach?

Following the discovery of the breach, Ticketmaster launched an investigation with forensic experts to determine the scope and impact. They have also notified law enforcement and are cooperating with them. Ticketmaster is working to mitigate risks to affected users and has taken steps to notify regulatory authorities and customers about the unauthorized access to their personal information.

Your Trusted Cybersecurity Provider

While we outline the fallout from Ticketmaster’s breach and continue to investigate the incident, it is important for everyone to take proactive measures to protect their personal and financial information. By following these steps, you can help secure your digital identity against this breach’s repercussions and future security threats.

IT GOAT, as a leading IT Managed Services Provider, specializes in providing robust cybersecurity solutions tailored to the unique needs of businesses. With a proactive approach to threat detection, rapid response times, and comprehensive protective measures, IT GOAT ensures that businesses are shielded from potential cyber threats. Partnering with IT GOAT means investing in the security and future of your business.

IT GOAT Demo

See the power of IT GOAT.
The world’s most advanced cybersecurity platform catered specifically to your business’ needs.

Sign Up

Keep up to date with our digest of trends & articles.

By subscribing, I agree to the use of my personal data in accordance with IT GOAT Privacy Policy. IT GOAT will not sell, trade, lease, or rent your personal data to third parties.

Recent Posts

Read More

Get a Demo

Mitigate All Types of Cyber Threats 

Experience the full capabilities of our advanced cybersecurity platform through a scheduled demonstration. Discover how it can effectively protect your organization from cyber threats.

IT GOAT

IT GOAT: Threat Intel & Cyber Analysis

We are experts in the field of cybersecurity, specializing in the identification and mitigation of advanced persistent threats, malware, and exploit development across all platforms. 

Threat Detection Experts

Protect Your Business & Operations

Exceptional performance in the latest evaluations, achieving 100% prevention rate and providing comprehensive analytic coverage, unmatched visibility, and near-instant detection of threats.

2024 Choosing an MSP: Crucial Factors to Consider