{"id":8790,"date":"2024-06-01T00:00:00","date_gmt":"2024-05-31T23:00:00","guid":{"rendered":"https:\/\/instrid.sk\/uncategorized\/na-ticketmaster-zautocili-hackeri-odcudzili-viac-ako-terabajt-dat\/"},"modified":"2024-06-01T00:00:00","modified_gmt":"2024-05-31T23:00:00","slug":"na-ticketmaster-zautocili-hackeri-odcudzili-viac-ako-terabajt-dat","status":"publish","type":"post","link":"https:\/\/instrid.sk\/en\/archiv\/na-ticketmaster-zautocili-hackeri-odcudzili-viac-ako-terabajt-dat\/","title":{"rendered":"Ticketmaster sa stal obe\u0165ou hackersk\u00e9ho \u00fatoku. \u00dadaje 560 mili\u00f3nov pou\u017e\u00edvate\u013eov s\u00fa v ohrozen\u00ed"},"content":{"rendered":"

Pou\u017e\u00edvate\u013esk\u00e9 d\u00e1ta s\u00fa st\u00e1le ve\u013emi hodnotnou komoditou. Spolo\u010dnosti v\u010faka nim dok\u00e1\u017eu vylep\u0161ova\u0165 svoje slu\u017eby alebo produkty, aby uspokojili potreby z\u00e1kazn\u00edkov. Z\u00e1rove\u0148 v\u0161ak l\u00e1kaj\u00fa aj kybernetick\u00fdch zlo\u010dincov, ktor\u00ed sa ich sna\u017eia ukradn\u00fa\u0165 a\u00a0n\u00e1sledne preda\u0165.<\/p>\n

Obe\u0165ou tak\u00e9hoto \u00fatoku sa ned\u00e1vno stala americk\u00e1 spolo\u010dnos\u0165 Ticketmaster<\/strong>, ktor\u00e1 zabezpe\u010duje predaj l\u00edstkov na r\u00f4zne podujatia. T\u00fato skuto\u010dnos\u0165 potvrdila ich matersk\u00e1 spolo\u010dnos\u0165 Live Nation Entertainment, pri\u010dom to ohl\u00e1sila americkej Komisii pre cenn\u00e9 papiere a\u00a0burzu.<\/p>\n

V\u00a0ozn\u00e1men\u00ed pre komisiu uv\u00e1dzaj\u00fa, \u017ee vo \u0161tvrtok 20. m\u00e1ja identifikovali neopr\u00e1vnen\u00fa aktivitu v\u00a0cloudovej datab\u00e1ze tretej strany<\/strong>, na z\u00e1klade \u010doho za\u010dali vy\u0161etrovanie s\u00a0popredn\u00fdmi forenzn\u00fdmi vy\u0161etrovate\u013emi, aby pochopili, \u010do sa presne stalo.<\/p>\n

\u201eUsilujeme sa zmierni\u0165 riziko pre na\u0161ich pou\u017e\u00edvate\u013eov a spolo\u010dnos\u0165, informovali sme org\u00e1ny \u010dinn\u00e9 v trestnom konan\u00ed a neust\u00e1le s nimi spolupracujeme. Pod\u013ea potreby informujeme aj regula\u010dn\u00e9 org\u00e1ny a pou\u017e\u00edvate\u013eov o neopr\u00e1vnen\u00fdch pr\u00edstupoch k osobn\u00fdm \u00fadajom,\u201c<\/em> uviedli.<\/p>\n

Kto stoj\u00ed za \u00fatokom?<\/h3>\n

Spolo\u010dnos\u0165 Live Nation Entertainment vo svojom ozn\u00e1men\u00ed komisii hovor\u00ed, \u017ee za \u00fanikom stoj\u00ed \u201eakt\u00e9r hrozby\u201c, no ne\u0161pecifikuje. K\u00a0\u00fatoku sa v\u0161ak prihl\u00e1sila hackersk\u00e1 skupina ShinyHunters<\/strong>, ktor\u00e1 uviedla, \u017ee disponuj\u00fa \u00fadajmi o\u00a0560 mili\u00f3noch pou\u017e\u00edvate\u013eoch Ticketmasteru.<\/p>\n

Port\u00e1l Cyber Daily uv\u00e1dza, \u017ee skupine sa podarilo odcudzi\u0165 1,3 terabajtov pou\u017e\u00edvate\u013esk\u00fdch d\u00e1t<\/strong>. \u00a0Maj\u00fa obsahova\u0165 men\u00e1 pou\u017e\u00edvate\u013eov, ako aj ich adresy, mailov\u00e9 adresy, telef\u00f3ne \u010d\u00edsla \u010di \u00fadaje z platobn\u00fdch kariet. Skupina z\u00e1rove\u0148 zverejnila zaheslovan\u00fa \u010das\u0165 \u00fadajov ako d\u00f4kaz.<\/p>\n Zlo\u010dineck\u00e1 skupina ShinyHunters je pomenovan\u00e1 pod\u013ea videohernej s\u00e9rie Pok\u00e9mon. Zdroj: unsplash.com\/@gojomike\n

Odcudzen\u00e9 \u00fadaje pon\u00fakaj\u00fa na predaj, pri\u010dom cenu stanovili na 500-tis\u00edc americk\u00fdch dol\u00e1rov, \u010do predstavuje nie\u010do cez 460-tis\u00edc eur<\/strong>. Expert na kybernetick\u00fa bezpe\u010dnos\u0165 Mark Lukie v\u0161ak vyjadril svoje obavy z\u00a0mo\u017en\u00e9ho predaja \u00fadajov pre austr\u00e1lsky port\u00e1l ABC.<\/p>\n

\u201eMohlo by to znamena\u0165 potenci\u00e1lne riziko podvodu s identitou a predpoklad\u00e1me, \u017ee tieto \u00fadaje by sa nesk\u00f4r mohli pou\u017ei\u0165 na phishingov\u00e9 alebo imita\u010dn\u00e9 \u00fatoky,\u201c <\/em>uviedol. O\u00a0tom, ak\u00e9 probl\u00e9my dok\u00e1\u017ee nap\u00e1cha\u0165 kr\u00e1de\u017e identity, sme v\u00e1s informoval v predch\u00e1dzaj\u00facom \u010dl\u00e1nku.<\/p>\n

Ako sa to stalo?<\/h3>\n

Port\u00e1l Bleeping Computer uv\u00e1dza, \u017ee cloudov\u00e1 datab\u00e1za tretej strany patr\u00ed spolo\u010dnosti Snowflake. Ich slu\u017eby vyu\u017e\u00edva vy\u0161e 9-tis\u00edc z\u00e1kazn\u00edkov vr\u00e1tane najv\u00e4\u010d\u0161\u00edch svetov\u00fdch spolo\u010dnost\u00ed – Adobe, AT&T, Mastercard, Siemens, HP, DoorDash, JetBlue a\u00a0mnoho \u010fal\u0161\u00edch<\/strong>.<\/p>\n

\u010ealej uv\u00e1dzaj\u00fa vysvetlenie spolo\u010dnosti Hudson Rock, ktor\u00e1 sa zaober\u00e1 kybernetickou bezpe\u010dnos\u0165ou. T\u00e1 tvrd\u00ed, \u017ee \u00fato\u010dn\u00edci sa k\u00a0pou\u017e\u00edvate\u013esk\u00fdm \u00fadajom dostali za pomoci ukradnut\u00fdch prihlasovac\u00edch \u00fadajov od \u00fa\u010dtu zamestnanca<\/strong> prev\u00e1dzkovate\u013ea slu\u017eby.<\/p>\n

Kyberbezpe\u010dnostn\u00e1 spolo\u010dnos\u0165 z\u00e1rove\u0148 dodala, \u017ee zariadenie tohto zamestnanca infikovali infostealerom<\/strong>, \u0161kodliv\u00fdm programom na kradnutie \u00fadajov, e\u0161te v okt\u00f3bri minul\u00e9ho roku. Z\u00e1rove\u0148 mali ma\u0165 pr\u00edstup ku generovaniu tokenov na export \u00fadajov z\u00e1kazn\u00edkov.<\/p>\n Hackerom sa malo podari\u0165 prenikn\u00fa\u0165 aj k \u00fadajom z\u00e1kazn\u00edkov banky Santander. Zdroj: unsplash.com\/@theshuttervision\n

\u201eJednoducho povedan\u00e9, jedin\u00e9 poverenie viedlo k\u00a0exfiltr\u00e1cii potenci\u00e1lne stoviek spolo\u010dnost\u00ed, ktor\u00e9 ukladali svoje \u00fadaje pomocou slu\u017eby Snowflake, pri\u010dom samotn\u00fd akt\u00e9r hrozby nazna\u010dil, \u017ee ovplyvnen\u00fdch je 400 spolo\u010dnost\u00ed,\u201c<\/em> vysvetlila kyberbezpe\u010dnostn\u00e1 spolo\u010dnos\u0165 Hudson Rock.<\/p>\n

Hackersk\u00e1 skupina t\u00fdmto \u00fatokom len pod\u010diarkla svoju nebezpe\u010dnos\u0165 pre spolo\u010dnosti a\u00a0ich pou\u017e\u00edvate\u013eov, preto\u017ee u\u017e v\u00a0minulosti sa im podarilo odcudzi\u0165 podobn\u00e9 \u00fadaje. V\u00a0roku 2021 predala d\u00e1ta o\u00a070 mili\u00f3noch z\u00e1kazn\u00edkoch americkej spolo\u010dnosti AT&T<\/strong>, informuje BBC.<\/p>\n

\u010eal\u0161ia v\u00fdzva pre Ticketmaster<\/h3>\n

Ned\u00e1vny hackersk\u00fd \u00fatok v\u0161ak nie je jedin\u00fd probl\u00e9m, ktor\u00e9mu \u010delia spolo\u010dnosti Ticketmaster a Live Nation. Vl\u00e1da Spojen\u00fdch \u0161t\u00e1tov americk\u00fdch a desiatky americk\u00fdch \u0161t\u00e1tov vo \u0161tvrtok 30. m\u00e1ja podali \u017ealobu na firmu Live Nation v\u00a0 protimonopolnom s\u00fadnom konan\u00ed<\/strong>.<\/p>\n

Port\u00e1l CNN uv\u00e1dza, \u017ee pod\u013ea regula\u010dn\u00fdch org\u00e1nov stoj\u00ed za realiz\u00e1ciou pl\u00e1nu na potla\u010denie konkurencie, \u010do sa odzrkad\u013euje aj na zlom z\u00e1kaznickom servise cez m\u00e4t\u00face ceny a\u017e po drah\u00e9 poplatky<\/strong> za predaj vstupeniek a obmedzenia \u010fal\u0161ieho predaja vstupeniek na podujatia.<\/p>\n

Spolo\u010dnos\u0165 Live Nation v\u0161ak t\u00fato \u017ealobu pova\u017euje za \u201enepodlo\u017een\u00fa\u201c<\/em>. Z\u00e1rove\u0148 si mysl\u00ed, \u017ee nevyrie\u0161i probl\u00e9my z\u00e1kazn\u00edkov a\u00a0tvrd\u00ed, \u017ee \u201eozna\u010denie spolo\u010dnosti Ticketmaster za monopol m\u00f4\u017ee by\u0165 pre ministerstvo spravodlivosti kr\u00e1tkodob\u00fdm PR v\u00ed\u0165azstvom, ale na s\u00fade prehr\u00e1\u201c<\/em>.<\/p>\n

Toto tvrdenie podlo\u017eila skuto\u010dnos\u0165ou, \u017ee ich \u010dist\u00e1 ziskov\u00e1 mar\u017ea bola v predch\u00e1dzaj\u00facom fi\u0161k\u00e1lnom roku na \u00farovni 1,4 percenta. To je omnoho menej ne\u017e u in\u00fdch spolo\u010dnost\u00ed<\/strong>, Apple a Google, vo\u010di ktor\u00fdm u\u017e prebiehaj\u00fa protimonopoln\u00e9 \u017ealoby ministerstva spravodlivosti.<\/p>","protected":false},"excerpt":{"rendered":"

Pou\u017e\u00edvate\u013esk\u00e9 d\u00e1ta s\u00fa st\u00e1le ve\u013emi hodnotnou komoditou. Spolo\u010dnosti v\u010faka nim dok\u00e1\u017eu vylep\u0161ova\u0165 svoje slu\u017eby alebo produkty, aby uspokojili potreby z\u00e1kazn\u00edkov. Z\u00e1rove\u0148 v\u0161ak l\u00e1kaj\u00fa aj kybernetick\u00fdch<\/p>","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[51],"tags":[],"class_list":["post-8790","post","type-post","status-publish","format-standard","hentry","category-archiv","two-columns"],"_links":{"self":[{"href":"https:\/\/instrid.sk\/en\/wp-json\/wp\/v2\/posts\/8790","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/instrid.sk\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/instrid.sk\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/instrid.sk\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/instrid.sk\/en\/wp-json\/wp\/v2\/comments?post=8790"}],"version-history":[{"count":0,"href":"https:\/\/instrid.sk\/en\/wp-json\/wp\/v2\/posts\/8790\/revisions"}],"wp:attachment":[{"href":"https:\/\/instrid.sk\/en\/wp-json\/wp\/v2\/media?parent=8790"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/instrid.sk\/en\/wp-json\/wp\/v2\/categories?post=8790"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/instrid.sk\/en\/wp-json\/wp\/v2\/tags?post=8790"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}