Ticketmaster In May 2024, notorious hacking group ShinyHunters claimed they'd breached Ticketmaster, stealing a 1.3 terabyte database with 560 million customer records. Price on the dark web: $500,000. What Was Stolen Full names and contact information Email addresses and phone numbers Physical addresses Partial credit card data (last 4 digits, expiration dates) Ticket purchase history and event details Customer fraud details How It Happened The breach exploited Ticketmaster's use of Snowflake, a cloud data platform: Hackers obtained stolen credentials from a former Snowflake employee The compromised account had no multi-factor authentication Attackers accessed Ticketmaster's cloud-stored data 1.3 TB of customer records exfiltrated The Timeline of Negligence May 27, 2024: Data posted for sale on BreachForums July 8, 2024: Ticketmaster officially confirms breach ~51 days to discover the intrusion Over a month before customer notification Legal Fallout 14+ class-action lawsuits filed Multidistrict litigation motion to consolidate 48+ actions Separate DOJ antitrust lawsuit against Live Nation (Ticketmaster's parent) The ShinyHunters Resume This isn't their first rodeo: Microsoft Azure AT&T Samsung Home Chef 60+ companies since 2020 One member was sentenced to 3 years in prison + $5M restitution in January 2024. 2026 Update In June 2025, ransomware group Arkana re-listed the Ticketmaster data—likely a resale of ShinyHunters' original cache. Your data is being traded like baseball cards. What Citizens Can Do Change your Ticketmaster password immediately Enable 2FA on your account Monitor credit cards for fraudulent transactions Set up PIN protection with your cell provider Watch for phishing scams using your concert history The Reality: If you've bought a concert ticket, assume your data is compromised.