Snowflake Data Breach Exposes Ticketmaster and Others

A significant data breach at cloud storage company Snowflake has affected Ticketmaster and several other organizations. The breach, reported by security researchers, resulted in the theft of information from 560 million users, with hackers demanding $500,000 for the data.

Live Nation Entertainment, Ticketmaster’s parent company, confirmed unauthorized access to a third-party cloud database, primarily containing data from the ticket sales platform. The breach was part of a broader campaign targeting Snowflake customers using single-factor authentication. Snowflake stated that the incident was due to compromised credentials rather than a vulnerability in its platform.

The hacking group claims to have accessed data from major organizations like Anheuser-Busch, Allstate, and State Farm, affecting roughly 400 companies. They demanded $20 million from Snowflake in exchange for the stolen data. The breach also involved compromised demo accounts that lacked multi-factor authentication.

Snowflake has urged customers to disable inactive accounts, enable MFA, and follow mitigation recommendations to secure their data.