Giant entertainment company Live Nation admits data breach at Ticketmaster, with customer information getting leaked
Live Nation and Ticketmaster Face Major Data Breach, Cooperating with Authorities
In a significant turn of events, Live Nation, the global leader in live entertainment, has confirmed a data breach involving its subsidiary, Ticketmaster. The breach, which was initially detected on May 20, 2024, has exposed personal and financial information of over 560 million customers [1][2][4].
The unauthorized activity came to light three days before the Justice Department filed a civil antitrust lawsuit against Live Nation and Ticketmaster, alleging monopolization and other unlawful conduct in the live entertainment industry [3]. The details of the third-party vendor involved, the method of attack, the extent of the data stolen, and the current status of the breach remain unclear.
Ticketmaster's customer dataset, including names, addresses, phone numbers, email addresses, order histories, and partial payment details, was posted for sale by the hacking group ShinyHunters on BreachForums on May 27 [1]. Another post, seemingly an associate of ShinyHunters, also posted the Ticketmaster data to another forum around the same time.
Live Nation Entertainment, the corporate owner of Ticketmaster, disclosed the potential data breach in a filing with the Securities and Exchange Commission on May 27 [1]. The company has notified and is cooperating with regulatory authorities and affected users regarding the unauthorized access to personal information [1].
The SEC filing states that the incident has not had, and is not expected to have, a material impact on Live Nation's overall business operations or financial condition [1]. The ongoing remediation efforts by Live Nation in response to the data breach are still underway.
Meanwhile, another cybersecurity incident is unfolding, as Snowflake, a cloud-based data warehouse, is responding to a targeted threat campaign against some of its customer accounts. The Cybersecurity and Infrastructure Security Agency has referred all inquiries back to Ticketmaster. Multiple inquiries from Cybersecurity Dive since unconfirmed reports of the breach first surfaced on Tuesday have not received a response from Ticketmaster or its parent company, Live Nation.
As of August 2025, the compromised Ticketmaster data is reportedly being sold on the dark web, posing risks to the affected users [1][2][4]. The current status of the breach remains a severe incident impacting hundreds of millions, with no major updates about resolution or further containment since the confirmation date [1][2][4].
Live Nation is working to mitigate risk to its users and the company, and is cooperating with law enforcement in their investigation. This breach serves as a reminder for all companies to prioritize cybersecurity measures and protect their users' personal information.
[1] [source] [2] [source] [3] [source] [4] [source] (August 2025 update)
In the aftermath of the data breach at Live Nation's subsidiary, Ticketmaster, cybersecurity measures have become increasingly important for companies to prioritize, with over 560 million customers' personal and financial information potentially compromised. Live Nation is working with regulatory authorities and affected users to address this significant cybersecurity incident.
