Scalpers Work with Hackers to Liberate Ticketmaster's 'Non-Transferable' Tickets
Scalpers exploit Ticketmaster and AXS ticket creation processes, generating and selling "non-transferable" tickets. Lawsuit reveals scalpers' ability to create authentic tickets, challenging platforms' anti-scalping measures. Security researchers demonstrate reverse engineering barcode generation.
Read original article
Scalpers have managed to reverse-engineer Ticketmaster's ticket creation process, allowing them to generate and sell "non-transferable" tickets on their own infrastructure. A lawsuit filed by AXS in California has exposed the battle between scalpers and ticket platforms, revealing how scalpers extract tickets by creating entry barcodes on their controlled infrastructure. By understanding how Ticketmaster and AXS produce electronic tickets, scalpers can recreate genuine tickets, bypassing anti-scalping measures. Although AXS accuses scalpers of hacking and distributing "counterfeit" tickets, most of these tickets scan as authentic. Security researchers have demonstrated how scalpers can generate valid tickets for events by reverse engineering Ticketmaster's barcode generation process. This method is likely applicable to AXS tickets as well. The lawsuit highlights the challenge platforms face in preventing scalpers from exploiting their systems, leading to a legal and technological battle in the ticketing industry.
Related
Snowflake breach snowballs as more victims, perps, come forward
The Snowflake data breach expands to include Ticketek, Ticketmaster, and Advance Auto Parts. ShinyHunters claim involvement, Snowflake enforces security measures. CDK faces ransomware attack, Juniper and Apple vulnerabilities identified. Jetflicks operators convicted.
Fake Elon Musk livestreams promoting crypto scams keep popping up on YouTube
Scammers exploit YouTube with fake Elon Musk videos promoting cryptocurrency scams. Broadcasts feature manipulated content, hijack channels, and use SpaceX themes, persisting despite prevention efforts. The issue targets high-profile figures and may continue.
ID verification service for TikTok, Uber, X exposed driver licenses
A cybersecurity researcher found AU10TIX's admin credentials exposed online, risking data breach for TikTok, Uber users. Concerns rise over ID verification services' vulnerability to cyberattacks, emphasizing the need for enhanced security measures.
Ticketmaster has begun warning customers about data breach
Ticketmaster notifies customers of a data breach involving personal information theft. 1.3 terabytes of data were compromised and sold on the dark web. Snowflake denies involvement. Ticketmaster enhances security measures.
Reverse Engineering Ticketmaster's Rotating Barcodes
TicketMaster introduces SafeTix with rotating barcodes to prevent fraud. Issues with connectivity reported. Barcodes contain TOTPs and bearer token. Concerns raised over functionality, privacy, and user experience despite enhanced security claims.
1 commentsRelated
Snowflake breach snowballs as more victims, perps, come forward
The Snowflake data breach expands to include Ticketek, Ticketmaster, and Advance Auto Parts. ShinyHunters claim involvement, Snowflake enforces security measures. CDK faces ransomware attack, Juniper and Apple vulnerabilities identified. Jetflicks operators convicted.
Fake Elon Musk livestreams promoting crypto scams keep popping up on YouTube
Scammers exploit YouTube with fake Elon Musk videos promoting cryptocurrency scams. Broadcasts feature manipulated content, hijack channels, and use SpaceX themes, persisting despite prevention efforts. The issue targets high-profile figures and may continue.
ID verification service for TikTok, Uber, X exposed driver licenses
A cybersecurity researcher found AU10TIX's admin credentials exposed online, risking data breach for TikTok, Uber users. Concerns rise over ID verification services' vulnerability to cyberattacks, emphasizing the need for enhanced security measures.
Ticketmaster has begun warning customers about data breach
Ticketmaster notifies customers of a data breach involving personal information theft. 1.3 terabytes of data were compromised and sold on the dark web. Snowflake denies involvement. Ticketmaster enhances security measures.
Reverse Engineering Ticketmaster's Rotating Barcodes
TicketMaster introduces SafeTix with rotating barcodes to prevent fraud. Issues with connectivity reported. Barcodes contain TOTPs and bearer token. Concerns raised over functionality, privacy, and user experience despite enhanced security claims.