The Shiny Hunters, the cyber gang which is suspected of being behind the Ticketmaster data breach, have struck again, with Australian event ticketing company Ticketeck the latest to be embroiled in the attack.
Although Ticketmaster has yet to confirm the issue, which is being dubbed “The Snowflake breach” because it has affected cloud storage accounts on the Snowflake platform, it has been claimed the attack has resulted in the personal details of more than 560 million Ticketmaster customers being put up for sale on the dark web.
Snowflake refutes reports that its systems have been breached.
However, cyber experts are predicting that, in the next few days, more companies are likely to be reporting they have been hit by the cyber attack.
The Ticketech data, which includes hashed credit card numbers, the last four digits of credit cards, expiration dates, fraud details, customer names, addresses, emails, ticket and event information details, is now likely to be available on dark web, with a new wave of credit card fraud on the rise.
It is said that the repercussions could last for months or even years, especially with the rise of sleeper accounts.
Xavier Sheikrojan, senior risk intelligence manager at Signifyd, said: “Businesses should stay vigilant and implement robust protective measures, such as monitoring for anomalies in behaviour from their existing users and customers.
“Sometimes hackers only need one set of matching employee’s stolen credentials to get into the company’s database, so a forced reset of passwords, using strong and unique passwords, and implementing two factor authentication can be great strategies.
“This not only protects the business but also safeguards loyal customers. If you have manual review teams, ensure they are educated and aware of the latest data breach trends. Additionally, proactively find ways to optimise your machine learning detection.
“Balancing advanced technology with human oversight will be essential in addressing the fallout from this breach.”
Related stories
Firms on red alert over Ticketmaster mass data breach
Ticketmaster settles breach payout but denies liability
Ticketmaster rips up data breach compensation claims
Ticketmaster preps band of lawyers to fight GDPR fine
Ransomware victims who pay up are nearly all hit again
Gamers attacked as Fortnite firm suffers data breach
UK firms braced for fresh wave of ransomware attacks
UK firms still in dark over new cyber security measures
Major brands warned over extortion after global attack