Hackers Leaking Taylor Swift Tickets? Don’t Get Your Hopes Up

Proton, the institution down Proton Mail, launched an end-to-end encrypted alternate to Google Docs, seeking to vie with the unreality elephantine connected privacy. We broke down however Apple is taking a akin attack with its implementation of AI, utilizing a strategy it calls Private Cloud Compute successful its caller Apple Intelligence features.

In different news, we dug into however the US bans connected TikTok and Kaspersky software, contempt their nationalist information justifications, pose a menace to net freedom. We went wrong a crash people for US diplomats connected cybersecurity, privacy, surveillance, and different integer threats. And we published an in-depth probe into the origins of the world’s astir fashionable 3D-printed gun, which revealed that its creator was a self-described “incel” with fantasies of right-wing terror.

But that’s not all. Each week, we circular up the information quality we didn’t screen successful extent ourselves. Click the headlines to work the afloat stories, and enactment harmless retired there.

Hackers Leaking Taylor Swift Tickets? Don’t Get Your Hopes Up

The elephantine hack against Ticketmaster whitethorn person taken different twist. In June, transgression hackers claimed they had stolen 560 cardinal people’s accusation from the ticketing institution owned by Live Nation. The institution has since confirmed a breach, saying its accusation was taken from its Snowflake account. (More than 165 Snowflake customers were impacted by attacks connected the unreality retention institution that exploited a lack of multi-factor authentication and stolen login details).

Now successful a station connected cybercrime marketplace BreachForums, a hacker going by the sanction of Sp1d3rHunters is threatening to people much information from Ticketmaster. The account claims to beryllium sharing 170,000 summons barcodes for upcoming Taylor Swift gigs successful the US during October and November. The hacker demanded Ticketmaster “pay america $2million USD” oregon it volition leak “680 million” users’ accusation and people millions much lawsuit barcodes, including for concerts by artists specified arsenic Pink and Sting, and sporting events specified arsenic NFL games and F1 races.

The claims look to beryllium dubious, however, arsenic Ticketmaster's barcodes aren't static, according to the company. “Ticketmaster’s SafeTix exertion protects tickets by automatically refreshing a caller and unsocial barcode each fewer seconds truthful it cannot beryllium stolen oregon copied,” a Ticketmaster spokesperson tells WIRED successful a statement. The spokesperson adds that the institution has not paid immoderate ransom oregon engaged with the hackers’ demands.

Hacker groups are known to lie, exaggerate, and overinflate their claims arsenic they effort to get victims to pay. The 680 cardinal customers that Sp1d3rHunters claimed to person information connected is higher than the archetypal fig provided erstwhile the Ticketmaster breach was archetypal claimed, and neither fig has been confirmed. Even if victims bash determine to pay, hackers tin inactive support the information and effort to extort companies for a 2nd time.

Despite the breach astatine Ticketmaster primitively being publicized successful June, the institution has only recently begun emailing customers alerting them to the incident, which happened betwixt April 2 and May 18 this year. The institution says the database accessed whitethorn see emails, telephone numbers, encrypted recognition paper information, and different idiosyncratic information.

Stolen Login Details Can Unmask Child Abuse Viewers, Researchers Say

In caller years, there’s been a crisp uptick successful cybercriminals deploying infostealers. This malware tin drawback each of the login and fiscal details that idiosyncratic enters connected their machine, which hackers past merchantability to others who privation to exploit the information.

Cybersecurity researchers astatine Recorded Future person present published proof-of-concept findings showing these stolen login details tin beryllium utilized to potentially way down radical visiting dark-web kid intersexual maltreatment worldly (CSAM) sites. Within infostealer logs, the researchers accidental they were capable to find thousands of login details for known CSAM websites, which they could past cross-reference with different details and place the imaginable real-world names connected to the abusive website logins. The researchers reported details of individuals to instrumentality enforcement.