Ticketmaster

Ticketmaster experienced a significant security breach where criminal hackers claimed to have stolen data from 560 million people. The attackers exploited vulnerabilities in cloud storage services and lacked multi-factor authentication. They threatened to leak 170,000 ticket barcodes and demanded a $2 million ransom. Although the claims may be dubious, the breach exposes emails, phone numbers, encrypted credit card data, and other personal information, leading to a loss of trust and potential financial and reputational damage for affected customers and the company itself.

Source: https://www.wired.com/story/ticketmaster-taylor-swift-ticket-leak-security-roundup/

TPRM report: https://scoringcyber.rankiteo.com/company/ticketmaster

"id": "tic001071824",
"linkid": "ticketmaster",
"type": "Cyber Attack",
"date": "7/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"

{'affected_entities': [{'customers_affected': 560000000,
                        'industry': 'Entertainment',
                        'name': 'Ticketmaster',
                        'type': 'Company'}],
 'attack_vector': 'Exploitation of vulnerabilities in cloud storage services',
 'data_breach': {'data_encryption': ['Encrypted Credit Card Data'],
                 'data_exfiltration': True,
                 'number_of_records_exposed': 560000000,
                 'personally_identifiable_information': ['Emails',
                                                         'Phone Numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Emails',
                                              'Phone Numbers',
                                              'Encrypted Credit Card Data',
                                              'Other Personal Information']},
 'description': 'Ticketmaster experienced a significant security breach where '
                'criminal hackers claimed to have stolen data from 560 million '
                'people. The attackers exploited vulnerabilities in cloud '
                'storage services and lacked multi-factor authentication. They '
                'threatened to leak 170,000 ticket barcodes and demanded a $2 '
                'million ransom. Although the claims may be dubious, the '
                'breach exposes emails, phone numbers, encrypted credit card '
                'data, and other personal information, leading to a loss of '
                'trust and potential financial and reputational damage for '
                'affected customers and the company itself.',
 'impact': {'brand_reputation_impact': 'Loss of trust and potential '
                                       'reputational damage',
            'data_compromised': ['Emails',
                                 'Phone Numbers',
                                 'Encrypted Credit Card Data',
                                 'Other Personal Information'],
            'payment_information_risk': 'Encrypted Credit Card Data',
            'systems_affected': ['Cloud Storage Services']},
 'motivation': 'Financial Gain',
 'post_incident_analysis': {'root_causes': ['Lack of multi-factor '
                                            'authentication',
                                            'Vulnerabilities in cloud storage '
                                            'services']},
 'ransomware': {'data_exfiltration': True, 'ransom_demanded': 2000000},
 'threat_actor': 'Criminal Hackers',
 'title': 'Ticketmaster Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Lack of multi-factor authentication'}

Ticketmaster

United Natural Foods (UNFI)

Ontario Health atHome

Hawaiian Airlines