Category : Blog
Ticketfly Temporarily Shuts Down to Investigate Hack
Ticketfly is a ticket distribution service started in 2008 in San Francisco, California. Andrew Dreskin is the CEO of the company, previously co-founded the company Ticketweb, which is now owned by Ticketmaster. It grossed $500 million in 2013, processing 11.2 million tickets for more than 80,000 events across Canada and the United States.
Hackers have targeted Ticketfly, forcing the Eventbrite-owned ticketing service to temporarily go offline. The move affects both it’s own website and the sites of venues hosting on its servers, including Brooklyn Bowl, Merriweather Post Pavilion, the 9:30 Club, and more. Those sites currently return a “502 bad gateway” error. Earlier today, the sites featured a message from the hacker, threatening a data leak.
User data briefly available online
It’s admins did eventually discover the hack, but before they took down the defacement message and put the site in maintenance mode, a user also noticed that many CSV files containing user data were also freely accessible via one of the site’s URLs.
Since then, that URL has been taken down, and the data is not accessible anymore. Furthermore, Ticketfly replaced the original maintenance message with one admitting to the hack (image above).
“Following a series of recent issues with Ticketfly properties, we’ve determined that it has been the target of a cyber incident,” the message now available on it’s homepage reads.
The site’s abrupt downtime caused issues with bars and event organizers selling tickets through the Ticketfly service. Users can’t buy tickets either, as all Ticketfly servers are now down.
Hacker asking for a 1 Bitcoin ransom
The hacker behind the Ticketfly defacement and database theft is named IsHaKdZ. Zone-H, a website that archives site defacements includes entries attributed to this nickname going back as far as 2010, albeit it is unclear if it’s the same hacker or someone who is misusing an older pseudonym.
IsHaKdZ also left an email address on the defaced website, but the hacker did not respond to a request for comment on the hack before this article’s publication.
But the hacker did reply to a CNET reporter, revealing that he asked Ticketfly to pay a 1 Bitcoin ransom to not release the site’s data online. It did not confirm the ransom demand.
Highest Selling Technical Courses of Indian Cyber Security Solutions:
Cybersecurity services that can protect your company:
Other Location for Online Courses: