The cybercriminal known as "Sp1d3r" has released the first 1 million records from a dataset allegedly stolen from Ticketmaster/Live Nation for free. This data dump includes personal information such as names, addresses, emails, and phone numbers.
Malwarebytes Labs first became aware of this breach when it appeared as a major event on the newly revived BreachForums. The user "ShinyHunters" initially offered the complete dataset, comprising details of 560 million customers, for sale on this platform.
Interestingly, an almost identical offer appeared on another forum, posted by a user named "SpidermanData." It is speculated that SpidermanData could either be the same individual as ShinyHunters or a member of the ShinyHunters group.
Following the breach announcement, Malwarebytes Labs guided how individuals can protect themselves. It's crucial to note that even unconfirmed breach reports can be exploited by cybercriminals to conduct phishing attacks.
Ticketmaster later confirmed the data breach. In an interview with Bleeping Computer, ShinyHunters stated that there were already interested buyers for the data. Meanwhile, Sp1d3r, who has previously posted about data from Advance Auto Parts and Truist Bank, released 1 million Ticketmaster records for free. In a BreachForums post, Sp1d3r commented:
"Ticketmaster will not respond to requests to buy data from us. They care not for the privacy of 680 million customers, so we give you the first 1 million users free."
Cybercriminals are likely to seize this opportunity to monetize the stolen data, potentially leading to a surge in spam and phishing emails targeting the affected users.
