Skip to main content

See also:

Six indicted for StubHub cyberthefts that cost $1.6M

On Tuesday, StubHub announced that more than 1,600 StubHub accounts were hacked when thieves got the login information from other websites or through malware located on the account-holder's computers. StubHub believes it was made victim of an international cyber fraud ring.

According to the Associated Press, these hackings occurred March of last yet, but the information was withheld until arrests could be made. At a press conference on Wednesday, BBC news reported that seven people have been arrested and six have been indicted for the scam, which cost StubHub more than $1.6 million dollars.

A press conference held by the New York County’s district attorney, and attended by members of the police forces of London and Canada, announced that three men in London, two in New York, one in Spain and one in Toronto have been arrested.

When StubHub noticed the unauthorized purchases last year, they contacted authorities and then assisted customers with refunds and resetting passwords. Head of global communications, Glenn Lehrman, stated that though the StubHub security hadn’t been compromised, the people responsible belonged to a “pretty intense network of cyber fraudsters.”

The thieves hacked into Americans’ StubHub accounts to fraudulently buy and sell tickets and then laundered it through PayPal and international wire transfers. USA Today notes that the crime ring worked as a team to accomplish their goal. Two members fraudulently bought the tickets and then emailed them to three Americans. Those men then resold the tickets and laundered the money. The men range in age from 21 to 37.

For eBay, which is the owner of StubHub, this is the second breach to have been reported this year. Earlier this year, it had users change passwords after revealing hackers had gained access to a database containing critical private information, such as phone numbers, addresses, passwords and names.