By Pranab Khan 
Ticketmaster has begun sending out notification letters to customers affected by a recent data breach. Hackers stole the company’s Snowflake database, which had the personal information (Ticketmaster Alerts) of millions of users.
Reports say that Ticketmaster recently discovered an unauthorized person accessed important information from a cloud database managed by one of their third-party providers.
The company said that their investigation showed the data breach happened between April and May 2024. On May 23, 2024, investigators found that the breach might have affected some customers’ personal information. So far, they haven’t found any evidence of data misuse or further illegal activity in the cloud database.
In the notification letters, Ticketmaster revealed that the breach exposed customers’ names, basic contact information, and other details, which vary by user. They advised customers to be on the lookout for identity theft and fraud. Ticketmaster is offering every affected person a year of free identity monitoring to track their credit history.
While Ticketmaster initially said the breach affected more than 1,000 people, it actually impacted millions of customers worldwide, revealing sensitive information.
The Snowflake data theft happened during the Ticketmaster hack.
This incident began when a group called ShinyHunters allegedly sold the stolen information from the company. The attackers claimed they obtained personal and credit card information for 560 million consumers.
They used the stolen credentials without multi-factor authentication (MFA) to access data from the customers’ Snowflake accounts. Snowflake is a cloud-based data warehousing company that stores databases and performs data analysis.
The ShinyHunters group misused this service and sold the stolen data on a popular hacker forum for $500,000. They claimed the data totaled 1.3TB and included information on 560 million customers, ticket sales, event details, customer fraud, and partial credit card information.
Ticketmaster confirmed the hack late last month after filing a report with the SEC, suggesting they did not expect the incident to significantly impact their business.
Potentially affected individuals should sign up for the credit monitoring service offered by Ticketmaster and avoid engaging with unsolicited communications, as attackers might use the stolen data to deceive them.
Thank you for your sharing. I am worried that I lack creative ideas. It is your article that makes me full of hope. Thank you. But, I have a question, can you help me?
Thanks for sharing. I read many of your blog posts, cool, your blog is very good.