Taylor Swift Tickets Leak: Extortion Threats Against Ticketmaster
Share
Hackers have leaked what they claim is Ticketmaster barcode data for 166,000 Taylor Swift Eras Tour tickets, highlighting the critical nature of this data breach and extortion attempt. The threat actor, Sp1d3rHunters, is demanding a $2 million ransom to prevent further leaks, which they warn will include more Taylor Swift events, P!nk, Sting, F1 Formula Racing, MLB, and NFL events. This has been reported by the threat intel service Hackmanac.
In May, the notorious group ShinyHunters began selling data on 560 million Ticketmaster customers for $500,000. Ticketmaster later confirmed this breach stemmed from their Snowflake account, a cloud-based data warehousing service. Threat actors had exploited stolen credentials to download databases from at least 165 organizations, including Neiman Marcus, Los Angeles Unified School District, Advance Auto Parts, Pure Storage, and Satander, subsequently blackmailing these companies.
Sp1d3rHunters has now escalated their threats by leaking data for upcoming Taylor Swift concerts in Miami, New Orleans, and Indianapolis. This data includes barcodes, seat information, ticket face values, and instructions to convert this data into scannable barcodes. While Ticketmaster employs SafeTix technology, which refreshes barcodes every few seconds to prevent fraud, the breach still raises significant concerns over data security and the potential misuse of personal information.
Ticketmaster has confirmed they did not engage in ransom negotiations, countering claims that they were offered $1 million to delete the data. This situation underscores the importance of robust cybersecurity measures for companies using cloud services like Snowflake, especially in light of ongoing threats from groups like ShinyHunters.
The ramifications of such data breaches are severe, not only for the affected companies but also for consumers. Concert ticket buyers and fans of Taylor Swift are particularly alarmed, as their personal data’s integrity and the security of their purchased tickets are at stake. This incident calls for heightened vigilance and stronger cybersecurity protocols to protect sensitive information against increasingly sophisticated cyber threats.