{"id":24733,"date":"2024-06-21T09:10:25","date_gmt":"2024-06-21T17:10:25","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2024\/06\/21\/news-18463\/"},"modified":"2024-06-21T09:10:25","modified_gmt":"2024-06-21T17:10:25","slug":"news-18463","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2024\/06\/21\/news-18463\/","title":{"rendered":"First million breached Ticketmaster records released for free"},"content":{"rendered":"\n<p>The cybercriminal acting under the name &#8220;Sp1d3r&#8221; gave away the first 1 million records that are part of the data set that they claimed to have stolen from Ticketmaster\/Live Nation. The files were released without a price, for free. <\/p>\n<p>When Malwarebytes Labs first learned about this data breach, it happened to be the first major event that was shared on the <a href=\"https:\/\/www.malwarebytes.com\/blog\/news\/2024\/05\/data-leak-site-breachforums-is-back-boasting-live-nation-ticketmaster-user-data-but-is-it-a-trap\">resurrected BreachForums<\/a>, and someone acting under the handle &#8220;ShinyHunters&#8221; offered the full details (name, address, email, phone) of 560 million customers for sale.<\/p>\n<p>The same data set was offered for sale in an almost identical post on another forum by someone using the handle &#8220;SpidermanData.&#8221; This could be the same person or a member of the ShinyHunters group.<\/p>\n<p>Following this event, Malwarebytes Labs <a href=\"https:\/\/www.malwarebytes.com\/blog\/news\/2024\/05\/the-ticketmaster-breach-what-you-need-to-know\">advised readers on how to respond and stay safe<\/a>. Importantly, even when a breach isn&#8217;t a &#8220;breach&#8221;\u2014in that immediate moment when the details have yet to be confirmed and a breach subject is readying its public statements\u2014the very news of the suspected breach can be used by advantageous cybercriminals as a phishing lure. <\/p>\n<p>Later, <a href=\"https:\/\/www.malwarebytes.com\/blog\/personal\/2024\/06\/ticketmaster-confirms-customer-data-breach\">Ticketmaster confirmed the data breach<\/a>.<\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/ticketmaster-confirms-massive-breach-after-stolen-data-for-sale-online\" target=\"_blank\" rel=\"noreferrer noopener\">Bleeping Computer<\/a>\u00a0spoke to\u00a0ShinyHunters who said they already had interested buyers. Now, Sp1d3r, who was seen posting earlier about <a href=\"https:\/\/www.malwarebytes.com\/blog\/news\/2024\/06\/advance-auto-parts-customer-data-posted-for-sale\">Advance Auto Parts customer data<\/a> and <a href=\"https:\/\/www.malwarebytes.com\/blog\/news\/2024\/06\/truist-bank-confirms-data-breach\">Truist Bank data<\/a>, has released 1 million Ticketmaster related data records for free.<\/p>\n<figure class=\"wp-block-image aligncenter size-full is-resized\"><img decoding=\"async\" loading=\"lazy\" width=\"1259\" height=\"620\" src=\"https:\/\/www.malwarebytes.com\/wp-content\/uploads\/sites\/2\/2024\/06\/BF_Post_give_away.png\" alt=\"post giving away 1 million Ticketmaster data records\" class=\"wp-image-112638\" style=\"width:700px\" \/><figcaption class=\"wp-element-caption\">Post by Sp1d3r<\/figcaption><\/figure>\n<p>In a post on BreachForums, Sp1d3r said:<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cTicketmaster will not respond to request to buy data from us.<\/p>\n<p>They care not for the privacy of 680 million customers, so give you the first 1 million users free.\u201d<\/p>\n<\/blockquote>\n<p>The cybercriminals that are active on those forums will jump at the occasion and undoubtedly try to monetize those records. This likely means that innocent users that are included in the first million released records could receive a heavy volume of spam and phishing emails in the coming days. <\/p>\n<p><strong>Protecting yourself after a data breach<\/strong><\/p>\n<p>There are some actions you can take if you are, or suspect you may have been, the&nbsp;<a href=\"https:\/\/www.malwarebytes.com\/blog\/personal\/2023\/09\/involved-in-a-data-breach-heres-what-you-need-to-know\">victim of a data breach<\/a>.<\/p>\n<ul>\n<li><strong>Check the vendor\u2019s advice.<\/strong>&nbsp;Every breach is different, so check with the vendor to find out what\u2019s happened and follow any specific advice they offer.<\/li>\n<li><strong>Change your password.<\/strong>&nbsp;You can make a stolen password useless to thieves by changing it. Choose a&nbsp;<a href=\"https:\/\/www.malwarebytes.com\/computer\/how-to-create-a-strong-password\" target=\"_blank\" rel=\"noreferrer noopener\">strong password<\/a>&nbsp;that you don\u2019t use for anything else. Better yet, let a&nbsp;<a href=\"https:\/\/www.malwarebytes.com\/what-is-password-manager\" target=\"_blank\" rel=\"noreferrer noopener\">password manager<\/a>&nbsp;choose one for you.<\/li>\n<li><strong>Enable two-factor authentication (2FA).<\/strong>&nbsp;If you can, use a FIDO2-compliant hardware key, laptop or phone as your second factor. Some forms of&nbsp;<a href=\"https:\/\/www.malwarebytes.com\/glossary\/multi-factor-authentication-mfa\" target=\"_blank\" rel=\"noreferrer noopener\">two-factor authentication (2FA)<\/a>&nbsp;can be phished just as easily as a password. 2FA that relies on a FIDO2 device can\u2019t be phished.<\/li>\n<li><strong>Watch out for fake vendors.<\/strong>&nbsp;The thieves may contact you posing as the vendor. Check the vendor website to see if they are contacting victims, and verify the&nbsp;identity of anyone who contacts you&nbsp;using a different communication channel.<\/li>\n<li><strong>Take your time.<\/strong>&nbsp;Phishing attacks often impersonate people or brands you know, and use themes that require urgent attention, such as missed deliveries, account suspensions, and security alerts.<\/li>\n<li><strong>Consider not storing your card details<\/strong>. It\u2019s definitely more convenient to get sites to remember your card details for you, but we highly recommend not storing that information on websites.<\/li>\n<li><strong>Set up identity monitoring.<\/strong>&nbsp;<a href=\"https:\/\/go.cyrus.app\/MN4j\/fkkekmw9\" target=\"_blank\" rel=\"noreferrer noopener\">Identity monitoring<\/a>&nbsp;alerts you if your personal information is found being traded illegally online, and helps you recover after.<\/li>\n<\/ul>\n<p><strong>Check your exposure<\/strong><\/p>\n<p>While matters are still unclear how much information was involved, it\u2019s likely you\u2019ve had other personal information exposed online in previous data breaches. You can check what personal information of yours has been exposed with our Digital Footprint portal. Just enter your email address (it\u2019s best to submit the one you most frequently use) to our&nbsp;<a href=\"https:\/\/www.malwarebytes.com\/digital-footprint\">free Digital Footprint scan<\/a>&nbsp;and we\u2019ll give you a report.<\/p>\n<div class=\"wp-block-malware-bytes-button mb-button\" id=\"mb-button-7ba16f0b-04e8-4679-9512-2f21a0971dcf\">\n<div class=\"mb-button__row u-justify-content-center\">\n<div class=\"mb-button__item mb-button-item-0\">\n<p class=\"btn-main\"><a href=\"https:\/\/www.malwarebytes.com\/digital-footprint?utm_source=blog&amp;utm_medium=social&amp;utm_campaign=b2c_pro_acq_fy25dfplaunch_171269600960&amp;utm_content=V1\"><\/a><a href=\"https:\/\/www.malwarebytes.com\/digital-footprint\">SCAN NOW<\/a><\/p>\n<\/div>\n<\/div>\n<\/div>\n<hr class=\"wp-block-separator has-alpha-channel-opacity is-style-wide\" \/>\n<p><strong>We don&#8217;t just report on threats &#8211; we help safeguard your entire digital identit<\/strong>y<\/p>\n<p>Cybersecurity risks should never spread beyond a headline. Protect your\u2014and your family&#8217;s\u2014personal information by using <a href=\"https:\/\/www.malwarebytes.com\/identity-theft-protection\">identity protection<\/a>.<\/p>\n<p><a href=\"https:\/\/www.malwarebytes.com\/blog\/news\/2024\/06\/first-million-breached-ticketmaster-records-released-for-free\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p> A cybercriminals is giving 1 million data records from the Ticketmaster breach away for free, saying that Ticketmaster refused to pay <\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[31569,32,5897,31535,18888],"class_list":["post-24733","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-1-million","tag-news","tag-privacy","tag-sp1d3r","tag-ticketmaster"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/24733","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=24733"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/24733\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=24733"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=24733"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=24733"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}