#TBA25 - It’s time to celebrate the finest in our industry. Award nominations are open! Submit your nominations!
Our global meeting returns to Manchester 28-29-30 April 2025 - #TBF25 Earlybird rate ends Friday, 28 Feb 2025
Who's already registered for #TBF25? An A-Z of the entertainment sector at #TBF25 here
#TBA25 Judging panel unveiled: Meet the judges here

Legal

Ticketmaster ‘hack’ sees 560m customers’ data up for sale

Image by Dee from Pixabay

A criminal hacking group claims to be selling the personal data of more than 500 million Ticketmaster users after alleging it breached the ticketing giant’s security.

ShinyHunters is offering the Ticketmaster customer information for $500,000 on a hacking community called Breach Forums. The hacking group claims to have the details of 560 million Ticketmaster customers in 1.3 terabytes of data.

ShinyHunters shared a sample of the data, which includes hashed credit card numbers and the last four digits of credit cards. It also featured credit card expiration dates as well as names, addresses, and emails.

Ticketmaster has not yet commented on the claims, and has yet to respond to TheTicketingBusiness.com’s request for comment. The claims went live on Tuesday (May 28).

“560 million customers full details (name, address, email, phone),” ShinyHunters said in its post on Breach Forums. “Ticket sales, event information, order details.”

Australia’s Department of Home Affairs said it is aware of a cyber incident, according to ABC News. A department spokesperson told ABC it is “working with Ticketmaster to understand the incident”.

Ticketmaster hacked in 2018

In 2018, Ticketmaster admitted it had suffered a security breach, which affected up to 40,000 UK customers. Malicious software on third-party customer support product Inbenta Technologies caused the hack, the firm said on Twitter. Ticketmaster UK was later fined £1.25m for failing to keep its customers’ personal data secure by the Information Commissioner’s Office (ICO).

ShinyHunters, which was formed in 2020, has been responsible for a series of hacks of major companies. These include Microsoft, AT&T and Tokopedia.

In 2022, ShinyHunters leaked the information of 70 million AT&T subscribers, and other victims include Home Chef, Star Tribune, and Pixlr. The group’s leader is reportedly also the administrator of BreachForums. The platform was recently resurrected on both the clear and dark webs after being seized by a team of international law enforcement agencies.