Ticketmaster has been targeted in a cyber-attack, with hackers allegedly offering to sell customer data on the dark web, its parent company, Live Nation, has confirmed.
The ShinyHunters hacking group is reportedly demanding about £400,000 in a ransom payment to prevent the data being sold.
The group reportedly has access to the names, addresses, phone numbers and partial payment details of 560 million of the site’s customers.
In a filing to the US Securities and Exchange Commission on Friday, Live Nation said: “On May 20, 2024, Live Nation Entertainment, Inc. identified unauthorized activity within a third-party cloud database environment containing Company data (primarily from its Ticketmaster L.L.C. subsidiary) and launched an investigation with industry-leading forensic investigators to understand what happened.
“On May 27, 2024, a criminal threat actor offered what it alleged to be Company user data for sale via the dark web.
“We are working to mitigate risk to our users and the Company, and have notified and are cooperating with law enforcement.
“As appropriate, we are also notifying regulatory authorities and users with respect to unauthorized access to personal information.”
On Friday, bank Santander confirmed that it had been hacked about two weeks ago. ShinyHunters are also reported to be behind this cyber-attack.
The group posted an advert on a hacker forum for the data, which it says also includes staff HR details, with an asking price of $2m (£1.6m). The group claimed it had the data of 30 million customers. It also claimed to have 6m account numbers and balances, and 28m credit card numbers.
In the post outlining the data it claims to hold, the hacker collective taunts the bank, stating: “Santander is also very welcome if they want to buy this data.”
According to reports, authorities in Australia and the US are engaging with Ticketmaster to understand and respond to the incident.
Ticketmaster and Live Nation have been approached for comment.