Hackers stole Ticketmaster data by first breaching a Belarusian-founded contractor, EPAM, that works with Ticketmaster and other customers. They gained access to EPAM's systems using info-stealer malware and then used the stolen credentials to access Ticketmaster's Snowflake account, which did not have multi-factor authentication enabled. This allowed them to steal data belonging to 560 million Ticketmaster customers.
The Ticketmaster ticket leak affected almost 39,000 print-at-home tickets for 154 upcoming events, including concerts by Pearl Jam, Phish, Tate McCrae, and Foo Fighters. The tickets were leaked by a threat actor known as 'Sp1derHunters,' who is selling data stolen in recent data theft attacks from Snowflake accounts.
Hackers leaked almost 39,000 print-at-home Ticketmaster tickets for 150 upcoming concerts and events, including Pearl Jam, Phish, Tate McCrae, and Foo Fighters2. The tickets were leaked by a threat actor known as 'Sp1derHunters,' who is selling data stolen in recent data theft attacks from Snowflake accounts.