Ticketmaster has been the subject of a cyber attack, with hackers allegedly offering to sell customer data on the dark web, its parent company Live Nation confirmed.
The ShinyHunters hacking group is reportedly demanding around £400,000 in a ransom payment to prevent the data being sold.
The group gained access to the names, addresses, phone numbers and partial payment details of 560 million of the site’s customers, it has been reported.
In a filing to the US Securities and Exchange Commission on Friday, Live Nation said: “On May 20, 2024, Live Nation Entertainment, Inc. identified unauthorized activity within a third-party cloud database environment containing Company data (primarily from its Ticketmaster L.L.C. subsidiary) and launched an investigation with industry-leading forensic investigators to understand what happened.
“On May 27, 2024, a criminal threat actor offered what it alleged to be company user data for sale via the dark web.
“We are working to mitigate risk to our users and the company, and have notified and are cooperating with law enforcement.
“As appropriate, we are also notifying regulatory authorities and users with respect to unauthorized access to personal information.”
The company added: “As of the date of this filing, the incident has not had, and we do not believe it is reasonably likely to have, a material impact on our overall business operations or on our financial condition or results of operations. We continue to evaluate the risks and our remediation efforts are ongoing.”
According to reports, authorities in Australia and the US are engaging with Ticketmaster to understand and respond to the incident.
The online ticket sales platform and Live Nation have been approached for comment.
Santander suffered a similar data breach this week, with the bank confirming on Friday that hackers had accessed data relating to all its staff and millions of overseas customers.
Press Association – Ellie Ng and Martyn Land