Giant entertainment company, Live Nation, acknowledges a massive data breach at Ticketmaster, impacting personal information of its customers.
Ticketmaster Data Breach: A Persisting Cybersecurity Concern
In May 2021, a significant data breach was reported at Ticketmaster, a popular ticketing platform owned by Live Nation Entertainment. The breach, linked to the well-known hacking group ShinyHunters, exploited vulnerabilities in the cloud data warehouse provider Snowflake.
The initial breach exposed sensitive customer data, including personal and financial information on approximately 560 million Ticketmaster customers. This data was consolidated into complete identity profiles, posing serious risks of identity theft and extortion.
In 2025, the originally stolen data was repackaged and enhanced, increasing its comprehensiveness and danger. The breach also affected other major organizations, such as AT&T, Santander, and Neiman Marcus, through the same Snowflake vulnerabilities.
Live Nation, the corporate owner of Ticketmaster, has been silent on the specifics of the incident. Details about the identity of the third-party vendor, the method of intrusion, the type and amount of data stolen, and the containment of the breach remain undisclosed.
Law enforcement has taken action against ShinyHunters, with several members being arrested. However, experts warn that some members remain active, and attacks continue. Ticketmaster itself has not issued any recent standalone public updates, but the breach remains part of the broader Snowflake data compromise landscape linked with ShinyHunters.
In response to the breach, Live Nation is working to mitigate the risk to users and the company. They have notified law enforcement, regulatory authorities, and affected users. As of the filing, Live Nation believes the incident will not have a significant impact on their overall business operations or financial condition.
The breach was disclosed amidst multiple enterprises dealing with the fallout of an attack spree targeting Snowflake's customers. Snowflake is responding to the targeted threat campaign against some customer accounts. The live concert giant first identified the unauthorized activity three days before the Justice Department filed a civil antitrust lawsuit against the company and Ticketmaster.
The Cybersecurity and Infrastructure Security Agency has referred all inquiries back to Ticketmaster. As of Friday, Live Nation Entertainment announced the potential data breach in a filing with the Securities and Exchange Commission. Despite multiple inquiries, Live Nation and Ticketmaster have not responded since unconfirmed reports surfaced on Tuesday.
[1] The Verge [2] ZDNet [3] BleepingComputer [4] KrebsOnSecurity
- The cybersecurity concerns surrounding the Ticketmaster data breach persist, with experts warning that some members of the hacking group ShinyHunters remain active, continuing attacks.
- This data breach initially exposed sensitive information of approximately 560 million Ticketmaster customers, but in 2025, the stolen data was repackaged and enhanced, increasing its danger.
- The Ticketmaster data breach was part of a broader Snowflake data compromise landscape linked to ShinyHunters, with other major organizations such as AT&T, Santander, and Neiman Marcus also affected.
