Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,195
- Points
- 113
Concert giant AXS has filed a lawsuit in California that exposes a legal and technological standoff between ticket speculators and platforms like Ticketmaster and AXS. Speculators have found a way to circumvent the restrictions of "Untransferable" tickets by generating special barcodes on their own infrastructure, which can then be freely sold to customers at reduced prices.
The attackers managed to achieve the desired result using reverse engineering, thanks to which the Ticketmaster and AXS e-ticket technology was successfully recreated and used without hindrance.
AXS 'lawsuit alleges that fraudulent brokers supply "fake" tickets to "unsuspecting consumers" by copying them from the AXS platform. In practice, in most cases, these tickets are successfully scanned at the entrance to the event. In this regard, in fact, it cannot be said that such false brokers deceive their customers. The promised service, in the end, still turns out.
Two security researchers contacted by reporters have shown how speculators can generate genuine concert tickets. These systems work for both Ticketmaster and AXS, which use "Rotating Barcodes" technology that change every few seconds.
Moreover, several online services have already implemented this fraudulent technology, allowing you to generate authentic tickets on their websites or apps and distribute links to these tickets through secondary market platforms such as StubHub, SeatGeek and VividSeats.
About services like Secure.Tickets, Amosa App and Verified-Ticket.com, there is almost no information on the internet. They are often hidden under the guise of broken sites, and access to them is provided through word of mouth among brokers. However, it is these services that make it easy to transfer tickets to customers without having to meet before the concert, log in to temporary accounts and exchange passwords. This makes life easier for brokers and fans alike.
Meanwhile, Ticketmaster and AXS are increasing their control over the resale of tickets on the secondary market, limiting the transfer of tickets for popular events often bought by speculators. This is aimed at monopolizing not only the primary, but also the secondary ticket sales markets.
The ability to generate tickets from Ticketmaster metadata is particularly noticeable after hackers published thousands of barcodes for Taylor Swift's upcoming tour. And then there are tens of thousands of tickets to other artists concerts. Ticketmaster claims that its SafeTix technology "ensures ticket security," but research shows that the system is not as reliable as it is said to be.
The researchers are confident that attacks to reproduce these tickets do not require high technological complexity and are accessible to any financially motivated person. At the same time, Ticketmaster and AXS prefer to fight fraudsters legally, rather than improve the technology, making it more secure.
Thus, in the pursuit of profit and unprecedented control over the ticket market, the giants of the industry unwittingly gave rise to an underground ecosystem of digital craftsmen. This battle of wits shows that in the age of high technology, true innovation often does not come from corporate offices, but from the shadows, where resourcefulness overcomes barriers that previously seemed insurmountable. However, any such actions still violate the law, so you definitely should not encourage the actions of speculators.
• Source: https://www.documentcloud.org/docum...erral_services_llc__cacdce-24-00377__00390-1/
The attackers managed to achieve the desired result using reverse engineering, thanks to which the Ticketmaster and AXS e-ticket technology was successfully recreated and used without hindrance.
AXS 'lawsuit alleges that fraudulent brokers supply "fake" tickets to "unsuspecting consumers" by copying them from the AXS platform. In practice, in most cases, these tickets are successfully scanned at the entrance to the event. In this regard, in fact, it cannot be said that such false brokers deceive their customers. The promised service, in the end, still turns out.
Two security researchers contacted by reporters have shown how speculators can generate genuine concert tickets. These systems work for both Ticketmaster and AXS, which use "Rotating Barcodes" technology that change every few seconds.
Moreover, several online services have already implemented this fraudulent technology, allowing you to generate authentic tickets on their websites or apps and distribute links to these tickets through secondary market platforms such as StubHub, SeatGeek and VividSeats.
About services like Secure.Tickets, Amosa App and Verified-Ticket.com, there is almost no information on the internet. They are often hidden under the guise of broken sites, and access to them is provided through word of mouth among brokers. However, it is these services that make it easy to transfer tickets to customers without having to meet before the concert, log in to temporary accounts and exchange passwords. This makes life easier for brokers and fans alike.
Meanwhile, Ticketmaster and AXS are increasing their control over the resale of tickets on the secondary market, limiting the transfer of tickets for popular events often bought by speculators. This is aimed at monopolizing not only the primary, but also the secondary ticket sales markets.
The ability to generate tickets from Ticketmaster metadata is particularly noticeable after hackers published thousands of barcodes for Taylor Swift's upcoming tour. And then there are tens of thousands of tickets to other artists concerts. Ticketmaster claims that its SafeTix technology "ensures ticket security," but research shows that the system is not as reliable as it is said to be.
The researchers are confident that attacks to reproduce these tickets do not require high technological complexity and are accessible to any financially motivated person. At the same time, Ticketmaster and AXS prefer to fight fraudsters legally, rather than improve the technology, making it more secure.
Thus, in the pursuit of profit and unprecedented control over the ticket market, the giants of the industry unwittingly gave rise to an underground ecosystem of digital craftsmen. This battle of wits shows that in the age of high technology, true innovation often does not come from corporate offices, but from the shadows, where resourcefulness overcomes barriers that previously seemed insurmountable. However, any such actions still violate the law, so you definitely should not encourage the actions of speculators.
• Source: https://www.documentcloud.org/docum...erral_services_llc__cacdce-24-00377__00390-1/
