A threat actor on a dark web forum has claimed to have compromised data from one of Latin America’s largest technology companies specializing in ticket sales.
The breach, according to the threat actor, dates back to August 2024 and affects 15 million individuals.
The stolen data includes sensitive personal details such as Social Security Numbers (SSNs), names, phone numbers, and email addresses. Additionally, the compromised records contain specifics related to event transactions, including event names, order dates, payment options, total amounts paid, and sales reports. The threat actor also claims to have access to information on tickets, amenities issued, partial revenue, and sales categorized by ticket type.
The threat actor has set the price as $10,000 for the alleged data. However they have clarified that this amount does not apply to the company. Payments are to be made in cryptocurrency, specifically Bitcoin (BTC) or Monero (XMR). A sample file of the alleged data is also included in the post.