Hackers have leaked what they declare is Ticketmaster barcode information for 166,000 Taylor Swift Eras Tour tickets, warning that extra occasions can be leaked if a $2 million extortion demand isn’t paid.
In Could, a widely known menace actor named ShinyHunters started promoting information on 560 million Ticketmaster clients for $500,000.
Ticketmaster later confirmed the data breach, which they in the end said was from their account on Snowflake, a cloud-based information warehousing firm utilized by the enterprise to retailer databases, course of information, and carry out analytics.
In April, menace actors started downloading Snowflake databases of no less than 165 organizations utilizing credentials stolen by information-stealing malware.
The menace actors then blackmailed the businesses, demanding fee to forestall the info from being leaked or offered to different menace actors. Corporations confirmed to have had information stolen from their Snowflake accounts embody Neiman Marcus, Los Angeles Unified College District, Advance Auto Components, Pure Storage, and Satander.
Taylor Swift tickets leaked
Immediately, a menace actor referred to as Sp1d3rHunters has leaked what they declare is the ticket information for 166,000 Taylor Swift Eras Tour barcodes used to achieve entry on numerous live performance dates.
Sp1d3rHunters, beforehand named Sp1d3r, is the menace actor behind the sale of information stolen from Snowflake accounts, publicly extorting the assorted firms for funds.
“Pay us $2million USD or we leak all 680M of your customers data and 30million extra occasion barcodes together with: extra Taylor Swift occasions, P!nk, Sting, Sporting occasions F1 Formulation Racing, MLB, NFL and 1000’s extra occasions,” reads the extortion demand first shared by menace intel service HackManac.
Supply: BleepingComputer
The publish claims the barcode information is for upcoming Taylor Swift concert events in Miami, New Orleans, and Indianapolis.
The publish features a small pattern of the alleged barcode information, which incorporates the worth used to create a scannable barcode, seat data, the face worth of tickets, and different data. The menace actor additional shared particulars on flip this information right into a scannable barcode.
Whereas the barcode information was not a part of the preliminary leak of stolen Ticketmaster information samples launched by the menace actors in Could, a few of the newly leaked information might be discovered within the older leaks, together with the hashed bank card and gross sales order data for the tickets.
The group behind these assaults is ShinyHunters, which has been liable for many data breaches over time. These embody leaking the info for 386 million consumer information from 18 firms in 2020, an AT&T breach impacting 70 million clients, and, most not too long ago, the leaking of 33 million telephone numbers used with the Authy multi-factor authentication app.
BleepingComputer contacted Ticketmaster to verify if that is legitimate ticket information and if the tickets shall be reissued, however has not obtained a reply right now.
