Breach, Cloud Security

Australian ticketing giant claimed to have 30M user records stolen

An abstract design of a terminal display, warning about a cyber attack. Multiple rows of hexadecimal code are interrupted by red glowing warnings and single character exclamation marks. The image can represent a variety of threats in the digital world: data theft, data leak, security breach, intrusion, anti-virus failure, etc…

TechCrunch reports that major Australian live event and ticketing company TEG had data allegedly stolen from 30 million of its users posted for sale.

Information claimed to have been exfiltrated included full names, birthdates, gender, birthdates, email addresses, usernames, and hashed passwords. Such a development comes nearly a month after Ticketek, a subsidiary of TEG, disclosed having the names, birthdates, and email addresses of its customers compromised following a breach of a third-party cloud-based platform. No details regarding the cloud-based platform were provided by Ticketek but parent firm TEG was found to have partnered with Snowflake, which has recently been embroiled in a breach that compromised nearly 165 customers, including Santander Bank, Ticketmaster, LendingTree, Advance Auto Parts, and the Los Angeles Unified School District. Snowflake, which has attributed the sweeping hacking operation to the lack of multi-factor authentication on customer environments, did not confirm nor deny having TEG or Ticketek among its customer base.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.