In a digital landscape where security breaches have become all too common, yet another alarming incident has surfaced, raising concerns about the safety of personal information online.

Reports have emerged of a significant data breach affecting customers of a prominent platform, highlighting the vulnerabilities faced by individuals in an increasingly interconnected world.

This latest breach underscores companies' ongoing challenges in safeguarding sensitive data and the potential repercussions for those affected.

The Department of Home Affairs confirmed a significant cyber incident that has potentially compromised the personal information of Ticketmaster customers.

This breach, which is part of a global data leak, could affect millions of individuals, raising serious concerns about privacy and security.

According to reports from CyberDaily, the notorious hacker group ShinyHunters is behind this cyberattack.

They allegedly obtained a staggering 1.3 terabytes of customer data from Ticketmaster, including sensitive details such as names, addresses, credit card numbers, phone numbers, and payment information.

The Department of Home Affairs confirmed a cyber incident potentially leaking personal details of Ticketmaster customers. Credits: Shutterstock

The group reportedly demands a ransom of $US 500,000 (approximately $AU 750,000) for the data.

According to a spokesperson, the Department of Home Affairs acknowledged the gravity of the situation and is currently ‘working with Ticketmaster to understand the incident’.

Further enquiries were directed to Ticketmaster; however, the company has yet to provide a detailed response to the public’s inquiries regarding the breach.

Cybersecurity expert Mark Lukie, who is the Director of several IT companies, warned of the severe implications for Australian customers.

‘This could mean the potential risk of identity fraud, and we would assume this data would be used for phishing or impersonation attacks down the track,’ he cautioned.

‘Users need to be very vigilant about their email and who they're responding to and not giving out any information to people trying to trick them.’

Mr Lukie noted that with the increasing frequency of cyberattacks, consumers would remain vulnerable to targeting.

‘From a commercial standpoint it's making them [hackers] lots of money and the more data these organisations have, the more they become a target for these criminal organisations,’ he continued.

‘We should all be looking for multi-factor authentication and additional resources to protect ourselves.’

This is not the first time Australian consumers have been caught up in a cyberattack linked to ShinyHunters.

In a previous incident, the personal data of 193,000 Pizza Hut customers was compromised when the group allegedly accessed their information.

The news of the Ticketmaster hacking came on the heels of a lawsuit filed against LiveNation, Ticketmaster's parent company, by the US Department of Justice.

The lawsuit accused LiveNation of operating an illegal ‘monopoly’ on live events, which allegedly led to inflated ticket prices and stifled smaller competitors.

The comprehensive antitrust lawsuit was filed by 30 state and district attorneys general.

Despite the lawsuit, LiveNation, which distributed over 620 million tickets in 2023, has downplayed the potential impact on ticket prices and described the legal action as a possible ‘PR win for the DOJ in the short term’.

In 2009, Live Nation, initially known as an events promoter, revealed plans to merge with Ticketmaster, the global leader in ticket sales for live music, sports, and theatre, forming the conglomerate Live Nation Entertainment.

As cyber threats escalate, recent reports of a significant data breach involving Ticketmaster have heightened concerns over the security of personal information online.

This breach underscores the urgent need for heightened cybersecurity measures, especially in light of Australia's ongoing battle against cyberattacks.

The nation faces an increasingly complex landscape of digital threats, prompting authorities to intensify efforts to bolster defences and protect both individuals and businesses from malicious activities in cyberspace.

Key Takeaways

• The Department of Home Affairs confirmed a cyber incident reported to impact Ticketmaster customers, with personal details potentially leaked.
• Notorious hacking group ShinyHunters was allegedly responsible for the breach and was reportedly selling the data for around $750,000.
• Cybersecurity expert Mark Lukie warned Australian customers of the risks of identity fraud and urged vigilance against phishing and impersonation attacks.
• This instance was not the first to involve Australian customers and ShinyHunters following a 2020 Pizza Hut customer data breach.

Have you or someone you know been affected by this breach? Do you have concerns about online security? Share your thoughts and experiences in the comments below, and let's help each other stay safe in the digital world.

 

[Observer]

More businesses should be made accountable for their lack of safety and privacy obtained by hackers and scammers

 

[Greg350]

Just don't respond to emails, texts, etc, the same as you always should be doing. Any of these hacks should not be of concern if you practice sound online behaviours.

Everyone needs to be vigilant.

 

[Colette 3799]

I use Ticketmaster regularly so there is concern but they shouldn’t have my card details as all have been changed recently. And I think they still might have my old address as I haven’t had tickets sent through the mail for a long time. I will be extra careful with any emails, but I’m not overly worried at this stage

 

[Rob44]

Just inconvenience the hackers by paying for things with cash or cheque. This sort of nonsense did not use to happen on the scale it does before credit cards and computerised data storage became a regular habit. Snake oil salesmen have always been around, but.......,

 

[rehandra]

Just don't respond to emails, texts, etc, the same as you always should be doing. Any of these hacks should not be of concern if you practice sound online behaviours.

Everyone needs to be vigilant.

totally agree. Double check everything!

 

[JimmyFlatrock]

Everyone should do there own research on this, but I would definitely use Paypal to pay for items on Ticketmaster, or anywhere else for that matter.

I have used Paypal for nearly 2 decades now for countless online purchases and with their high levels of encryption for each account and each transaction it is way safer than having your data stored here, there and everywhere on heaps of different online stores with dubious internet protections for your data. Paypal stores all user data in a single online vault system which is more secure than having it stored in multiple locations.

Your data is not shared by Paypal with anyone, including online stores. It's a payment gateway that merely tells a business that your transaction is valid and they will receive payment for the goods you are buying. Your card information is never transmitted during a transaction.
It's free to use PayPal to pay for a purchase or any other type of commercial transaction unless it involves a currency conversion. It also comes with purchase protection.

There are now 7 million active users of Paypal in Australia.

Has there ever been a data breech at Paypal? Yes in late 2022 about 35,000 users worldwide were impacted by a "credential stuffing attack"

Credential Stuffing Attack (in Lay Terms):

• Imagine you have a favorite password that you use for multiple online accounts
• Now, let’s say a cybercriminal gets hold of a big list of stolen usernames and passwords (from a data breach, for example).
• Instead of trying to crack each account individually, the cybercriminal uses this list to automatically try logging in to various services (like PayPal) using the same stolen credentials.
• They hope that some people who used the same username and password combination for different services will fall victim.
• So, in simple terms, a credential stuffing attack is like a thief trying a stolen key (your login credentials) on many different doors (online accounts) to see if any of them open

So, it seems to me that the data breech at Paypal was a consequence of user laziness or fault if you like, because the access was gained via a legitimate password. There is no evidence that the data was misused. Paypal has since strengthened security to avert an own goal by customers.

 

[Rob44]

Paypal still owes me $14.12c from around 10 years ago. For some odd reason Paypal locked my account and there was no way I could obtain access after two solid days trying. There is\\was a website called Papalsucks and it makes\made interesting reading.

 

[JimmyFlatrock]

Paypal still owes me $14.12c from around 10 years ago. For some odd reason Paypal locked my account and there was no way I could obtain access after two solid days trying. There is\\was a website called Papalsucks and it makes\made interesting reading.

Thanks Rob44, I may not look for it. I tend to place a lot in my own experiences and generally find there's reasonable answers to issues people have when I don't experience the same. 19.5 years of using hasn't seen me have any issues with Paypal and it a long test period for any probs to arise.

I'm guessing a typo in the website name although some would think it appropriate for a few deviants associated with the RCC.

 

[rehandra]

I have never had a problem with Paypal in seven years of using them.

 

[ElleJay]

I received an email from Ticketek today informing me about this. Towards the end, they ask you to click on a link to review cyber security guidelines! Really??? When we are taught to NEVER click on links!!!

 

[Colette 3799]

I received an email from Ticketek today informing me about this. Towards the end, they ask you to click on a link to review cyber security guidelines! Really??? When we are taught to NEVER click on links!!!

Was it definitely from them? I never received one.

 

[ElleJay]

Was it definitely from them? I never received one.

Fairly sure it was legit, although wary just in case.