Ticketmaster Data Breach Lawsuit (Snowflake MDL)
Data Breach · Lawsuit Proceeding

Ticketmaster and Live Nation Data Breach Claims Move Forward in the Snowflake Data-Security MDL

Published July 9, 2026

Two years after hackers hit Ticketmaster through a cloud account, the customer lawsuit is still very much alive — a judge just let the core claims proceed. But there is no settlement and nothing to file.

Ticketmaster data breach class action lawsuit consolidated in the Snowflake MDL
Ticketmaster and Live Nation face consolidated data breach claims in the Snowflake MDL in Montana.
Allegations Only · No Settlement Yet

This article describes ongoing class action litigation and a threat actor's public claims. The statements below are unproven allegations. No defendant has been found liable, no class has been certified, and nothing to claim at this time. This page is informational and is not legal advice.

What Is This About?

The lawsuits over Ticketmaster's 2024 data breach are still going — and a court has just let the core claims survive. Consumer claims against Ticketmaster and its parent, Live Nation Entertainment, are consolidated inside a larger multidistrict litigation over the Snowflake cloud-platform breaches: In re: Snowflake, Inc., Data Security Breach Litigation, MDL No. 3126, No. 2:24-md-03126, in the U.S. District Court for the District of Montana, before Chief Judge Brian M. Morris. The case was consolidated there by the Judicial Panel on Multidistrict Litigation in October 2024, grouping Ticketmaster with other companies whose Snowflake accounts were hit, such as AT&T and Advance Auto Parts.

On October 28, 2025, the court ruled on motions to dismiss. For the Ticketmaster/Live Nation track, it trimmed some counts (breach of contract and a California unfair-competition claim were dismissed) but allowed the core consumer claims — negligence, the California Consumer Privacy Act, and state consumer-protection claims — to move forward. It also denied Snowflake's motion to dismiss. In short, the case is alive and progressing, but the allegations remain unproven, no class has been certified, and there is no settlement and nothing to claim.

Status In Litigation — Core Claims Survived Dismissal In re Snowflake, Inc. Data Security Breach Litigation · MDL 2:24-md-03126 (D. Mont.) · MTD ruled Oct 28, 2025
The Breach Unauthorized access to a Ticketmaster Snowflake cloud account (~Apr–May 2024) Ticketmaster confirmed a breach; notices began July 2024 with 12 months of free monitoring
Scale No company-confirmed national total · >1,000 Maine residents (Maine AG) The "560 million" figure is the ShinyHunters attackers' unconfirmed sale-listing claim, not a company number
Can I Claim? No — nothing to claim yet No settlement, no fund, no claim form

The Breach Behind the Litigation

The Ticketmaster breach was part of a wave of 2024 attacks that targeted companies' accounts on Snowflake, a cloud data-warehouse platform. Between roughly April 2 and May 18, 2024, an unauthorized party accessed a Ticketmaster database hosted on Snowflake; Ticketmaster says it discovered the incident on May 23, 2024 and began notifying customers in early July, offering 12 months of free identity monitoring. According to those notifications, the information involved could include names, email addresses, phone numbers, addresses, and event or order details, along with limited payment-card data such as card type, expiration dates, and the last four digits — some of it encrypted.

The headline number attached to this breach — "560 million" — needs a clear caveat. That figure came from the hacking group ShinyHunters, which listed what it claimed was Ticketmaster/Live Nation data for sale in late May 2024. It is an attacker's sale-listing claim, not a company-confirmed count, and it should be treated as unverified. Ticketmaster has not published a nationwide total; the only figure tied to an official filing is its Maine Attorney General notice, which reported more than 1,000 Maine residents — a state subset. (Separately, the multidistrict panel's reference to "over 500 million individuals" describes all of the Snowflake-customer breaches combined, not Ticketmaster alone.)

Where the Case Stands

The Ticketmaster consumer suits were first filed in the Central District of California — Live Nation's home turf — in late May and early June 2024, then transferred into the Montana MDL. After consolidation, the operative pleading became a consolidated consumer complaint, and the defendants moved to dismiss. The October 28, 2025 ruling is the key milestone: it kept the negligence and CCPA claims (and related state-law claims) alive against Ticketmaster, Live Nation, and Snowflake, meaning the case proceeds into discovery and, eventually, a fight over class certification. No class has been certified yet.

It is worth noting what has and hasn't settled. Within the same Snowflake MDL, some other defendants — including Advance Auto Parts and Neiman Marcus — have reached settlements, and AT&T resolved its own breach for $177 million. But those are separate defendants and separate deals. Ticketmaster and Live Nation have not settled, so there is no Ticketmaster settlement fund and no claim form.

Is There a Settlement?

No. This is active litigation, not a payout. There is no settlement, no fund, no claim form, and no deadline for Ticketmaster customers. If the case later settles or a class is certified and prevails, a court-approved notice would explain who qualifies and how to file — and we would update this page and our data breach settlements hub. Be skeptical of any site claiming you can "file a Ticketmaster data breach claim" today.

What Should Ticketmaster Customers Do Now?

If you got a breach notice from Ticketmaster, take the free identity monitoring it offered and keep the letter. Watch for phishing that references concerts, tickets, or refunds, and keep an eye on the card you used — because payment-card details were among the data involved, reviewing statements for unfamiliar charges is worthwhile. Keep the notice in case a settlement or claims process is created later. For how large breach cases resolve, see the AT&T data breach settlement — another company caught in the same Snowflake wave.

This page is informational and is not legal advice.

Frequently Asked Questions

Is there a Ticketmaster data breach settlement or claim form?

No. The Ticketmaster/Live Nation claims are in active litigation within the Snowflake MDL and have not settled. There is no settlement fund, claim form, or deadline. Some other companies in the same MDL have settled, but Ticketmaster/Live Nation has not.

How many Ticketmaster customers were affected?

Ticketmaster hasn't confirmed a nationwide total. Its Maine AG notice reported more than 1,000 Maine residents. The "560 million" figure is the ShinyHunters hackers' unconfirmed sale-listing claim, not a company count.

What data was exposed?

Per Ticketmaster's notifications, possibly names, email addresses, phone numbers, addresses, and event/order details, plus limited payment-card data (card type, expiration, last four digits — some encrypted). Ticketmaster offered 12 months of free monitoring.

What stage is the case at?

Consolidated in the Snowflake MDL (No. 2:24-md-03126, D. Mont.). On October 28, 2025, the court trimmed some counts but let negligence, CCPA, and state consumer-protection claims proceed against Ticketmaster, Live Nation, and Snowflake. No class certified.

Sources

CourtListener — In re Snowflake, Inc. Data Security Breach Litigation, 2:24-md-03126 (D. Mont.)
JPML — MDL 3126 Transfer Order (Oct. 2024)
Mealey's — Trio of Dismissal Rulings in the Snowflake MDL
Ticketmaster — Data Security Incident Notice


For more class actions keep scrolling below.
Status In litigation — core claims survived dismissal (Oct. 28, 2025); no class certified, no settlement
Case Title In re: Snowflake, Inc., Data Security Breach Litigation (Ticketmaster/Live Nation track)
MDL Number 2:24-md-03126 (MDL No. 3126)
Court U.S. District Court, District of Montana (Chief Judge Brian M. Morris)
Defendants Live Nation Entertainment, Inc.; Ticketmaster LLC; Snowflake, Inc.
Consolidated By the JPML, October 4, 2024
Official Website CourtListener MDL Docket

More Data Breach Cases