FlagThis

Cybercriminals have allegedly stolen over $635,000 worth of Taylor Swift concert tickets by exploiting a loophole in an offshore ticketing system. Two individuals, Tyrone Rose, 20, and Shamara Simmons, 31, have been arrested and charged with grand larceny and computer tampering. The scheme involved stealing URLs for nearly 1,000 tickets to various events, including Taylor Swift's Eras Tour, Ed Sheeran concerts, Adele concerts, NBA games, and the US Open Tennis Championships, before reselling them for substantial profit.

Between June 2022 and July 2023, Rose and Simmons allegedly stole the tickets through an offshore ticket vendor and then resold them on StubHub in the US for significant profit. Rose, an employee of Sutherland Global Services, a third-party contractor for StubHub Jamaica, is accused of abusing his access to the network to find a backdoor. Prosecutors say the pair stole the tickets by allegedly intercepting approximately 350 orders from StubHub. The investigation is ongoing to determine if the Swift ticket scam was part of a wider operation.

ImgSrc: media.wired.com

References :

• WIRED: Cybercriminals Allegedly Used a StubHub Backdoor to Steal Taylor Swift Tickets
• The Register - Security: Alleged cyber scalpers Swiftly cuffed over $635K Taylor ticket heist
• The DefendOps Diaries: Cybercrime Exposes Vulnerabilities in Ticketing Systems: A Case Study
• BleepingComputer: Cybercrime 'crew' stole $635,000 in Taylor Swift concert tickets

Classification:

• HashTags: #TicketScam #TaylorSwift #CyberCrime
• Company: StubHub
• Target: StubHub
• Attacker: Unidentified
• Product: StubHub
• Feature: Ticket Theft
• Type: Hack
• Severity: Medium