2 Sources
[1]
Claude Helped a Hacker Find a Way to Issue Tickets to Almost Every US Music Festival
Fears about AI tools capable of autonomous hacking usually involve nightmare scenarios like the theft of nuclear launch codes or zeroed-out bank reserves. Far more plausible, it turns out, is asking AI to gain super-administrator access on a ticketing website and then issuing yourself and all of your friends free VIP backstage passes to Bonnaroo. That was the discovery of security researcher Ian Carroll, who used the AI tool Claude Opus 4.7 in April to discover a technique that allowed him full access to the systems of Front Gate Tickets, which handles ticketing for practically every major US music festival, from Lollapalooza and South by Southwest to Austin City Limits. Carroll found that Front Gate, which like Ticketmaster is a subsidiary of the event company Live Nation Entertainment, had a bug in its website that he -- with Claude's help -- could exploit to gain access to millions of customer or staff records and freely issue tickets for any event, of any value, to himself or whoever he chose. "It was pretty cool to see a ticket that's $4,000, and I could just hit a button and issue as many as I wanted," says Carroll, who runs the startup Seats.aero but also does independent security research. "I could go to every single event with no limitations or restrictions: I could get the backstage pass or whatever they sell to the super VIPs -- even if it's sold out." Carroll did not, in fact, take advantage of his ticket-issuing superpower, and instead reported his findings to Front Gate, which says it has now patched the vulnerability. When WIRED contacted the company, it responded with a statement that thanked Carroll for reporting the hackable flaw and described the incident as a successful collaboration that had resulted in improvements to its security. "This was resolved within 24 hours, and we can confirm there is no evidence of exploitation, ticket impact, or compromise of customer information," the statement reads. "The issue was identified by a responsible security researcher who used AI-assisted tools to bypass standard firewall security controls and access an internal API used by entry scanners at festival venues -- not a consumer-facing system or public login portal." Even now that the flaw is fixed, though, the incident demonstrates just how broadly AI may be able to dig up hackable bugs in every facet of the internet. Carroll -- who is part of Anthropic's Cyber Verification Program, which allows approved security researchers to use its tools for certain hacking functions -- says he was taken aback by how easily Claude came up with key elements of his technique for breaking into the Front Gate site. "I think there's a very good chance it could have found this exploit end-to-end without me doing anything at all," Carroll says. When WIRED reached out to Anthropic, the company responded in a statement that it "created our Cyber Verification Program to make advanced security capabilities available to defenders so they can conduct exactly this sort of research that helps make the world's code safer." It added that if Carroll had not been part of the program, his use of Claude to hack Front Gate's systems would have been detected and blocked. In its response to WIRED, Front Gate's spokesperson argued that the company's security safeguards limited the exposure of personal information, that the fraudulent issuing of tickets would have left an audit trail, and that tickets issued by a hacker would have been detected and canceled before they could be used. Carroll counters that those claims are uncertain at best. He says he successfully gained super-administrator privileges on the company's platform without any discernible response from the company, and did in fact access the site via a public-facing login portal. Carroll also notes that Front Gate doesn't claim to have evidence the vulnerability wasn't previously exploited. What's more, Front Gate confirmed Carroll's findings after he shared a draft of a blog post about his discovery with the company, prior to WIRED reaching out to Front Gate. In its response to Carroll at the time, the company didn't dispute that he was able to generate tickets at will. Carroll says he first became aware of Front Gate a couple of months ago, when he was considering attending Electric Daisy Carnival, a giant electronic dance music festival in his hometown of Las Vegas. He saw that the festival's ticketing was run by Front Gate and was intrigued to see when he checked other festivals' websites that the same company ran ticketing for practically every major US music festival other than Coachella. "This is like Ticketmaster but for music festivals," he remembers thinking. "They have the monopoly, essentially." As a security researcher who specializes in finding web vulnerabilities, he decided to poke around Front Gate's web domain for bugs. He quickly found what looked like a SQL injection vulnerability -- a common flaw that allows a hacker to input commands into a text field on a website, causing them to run on the site's backend and sometimes send back data stored there in a database. But a web application firewall on the site appeared to be blocking him from exploiting it. So he asked Claude Opus 4.7, the most advanced AI model Anthropic made available to the general public at the time, to find a way to exploit the flaw. It immediately coded a hacking technique that bypassed the firewall. "It was the first time, really, that I had a vulnerability that I didn't fully understand," says Carroll. "I had to go back and read what Claude had written to understand the bypass, because I didn't write it. Claude did it completely by itself." Claude had, in fact, found that a "nested SQL query" -- a SQL query inside of another SQL query -- could evade the firewall's detection. Soon the AI tool had written a script that displayed samples from a table of 500 databases of exposed customer information. In total, Carroll believes that the vulnerability he and Claude found would have provided access to the information of millions of customers, including names, emails, and mailing addresses -- but not credit card details -- as well as that of Front Gate's staff. With access to staff data, Carroll quickly found that he could also take over staff accounts. He searched for a super administrator's account, clicked the option to reset its password, and was able to find the reset code that the site had sent to the administrator's email stored in the site's backend. He then used it to confirm the reset, setting a new password and taking over the administrator's account. Soon he was looking at the most expensive tickets he could find for Bonnaroo and adding them as comp tickets to a kind of shopping cart. "It seems like you could do that for every single event that you wanted to," Carroll says. (He didn't actually complete an order and issue any tickets for fear of crossing a line and being charged with fraud.) Carroll was surprised to see just how easy his takeover method was: No two-factor authentication prevented a leaked, stolen, or guessed password from giving someone full access. "There's just this one centralized company issuing all tickets for every single festival," Carroll says. "And even without this vulnerability, if you knew someone's password, you could just log in without any verification and issue free tickets." Perhaps most remarkable, Carroll says, is that Front Gate didn't appear to have properly audited its own site for simple vulnerabilities, either with human hunters or the AI ones that seem to now make the bug-finding process scarily easy. "It just feels concerning when you think these very professional music festivals with professional websites are well-run," says Carroll. "Then you get access, and you realize it's all held together by duct tape and prayers."
[2]
Researcher used Claude to get free backstage passes to every major US music festival
Front Gate patched the vulnerability within 24 hours of Carroll's disclosure Security researcher Ian Carroll has disclosed a significant vulnerability in Front Gate Tickets. This Live Nation subsidiary handles ticketing for most major US music festivals, including Lollapalooza, South by Southwest, Austin City Limits and Bonnaroo. The disclosure, first reported by WIRED, is notable because Carroll found and exploited the vulnerability with substantial help from Claude Opus 4.7, Anthropic's AI model which raises broader questions about how quickly AI can now dig up exploitable bugs across the web. Carroll first spotted a SQL injection vulnerability on Front Gate's site which is a common flaw that lets an attacker run commands on a website's backend. A web application firewall appeared to be blocking him. He asked Claude to find a way past it. The AI on its own came up with a nested SQL query technique that bypassed the firewall. "It was the first time, really, that I had a vulnerability that I didn't fully understand," Carroll told WIRED. "I had to go back and read what Claude had written to understand the bypass, because I didn't write it." From there, Carroll was able to access hundreds of databases containing customer and staff data, including names, emails and mailing addresses (though not credit card details) and ultimately take over a super-administrator account by exploiting how the site handled password resets. With that access, he could issue tickets of any value to anyone for any event. He found a Bonnaroo Platinum ticket priced at $4,000 he could add to a cart and duplicate freely. He didn't complete any orders, flagged the issue to Front Gate instead and the vulnerability was patched within 24 hours. Carroll is part of Anthropic's Cyber Verification Program which gives approved security researchers access to Claude for legitimate security research. Anthropic said in a statement that if Carroll had not been part of the program, his use of Claude for this purpose "would have been detected and blocked." The broader implication Carroll flags is less about this specific vulnerability and more about what AI makes possible at scale. "I think there's a very good chance it could have found this exploit end-to-end without me doing anything at all," he said.
Share
Copy Link
Security researcher Ian Carroll used Anthropic Claude to uncover a critical vulnerability in Front Gate Tickets, a Live Nation subsidiary handling ticketing for major US music festivals. The AI-assisted discovery allowed super-administrator access to issue unlimited free tickets, including $4,000 VIP passes, raising questions about AI's capability to discover exploitable bugs at scale.
Security researcher Ian Carroll has exposed how Anthropic Claude can accelerate the discovery of serious security vulnerabilities, using the AI tool to uncover a critical flaw in Front Gate Tickets that could have allowed unlimited free ticket generation. The Front Gate Tickets vulnerability affected the Live Nation subsidiary responsible for ticketing for major US music festivals including Lollapalooza, South by Southwest, Austin City Limits, and Bonnaroo
1
. Carroll's AI cybersecurity research demonstrates a new reality where AI assisted hacking tools can identify and exploit complex security flaws faster than traditional methods.
Source: Digit
Carroll first noticed the vulnerability in April while considering attending Electric Daisy Carnival in Las Vegas. After discovering that Front Gate handled ticketing for practically every major US music festival except Coachella, he decided to investigate the platform's security
1
. What he found was a SQL injection vulnerability, a common flaw that allows attackers to input commands into a website's backend database. However, a web application firewall initially blocked his attempts to exploit it.This is where AI discovers hackable bugs in ways that surprised even experienced researchers. Carroll turned to Claude Opus 4.7 for assistance in bypassing the firewall protection. The AI independently developed a nested SQL query technique that successfully circumvented the security controls. "It was the first time, really, that I had a vulnerability that I didn't fully understand," Carroll told WIRED. "I had to go back and read what Claude had written to understand the bypass, because I didn't write it"
2
.Once past the firewall, Carroll gained access to hundreds of databases containing customer records including names, emails, and mailing addresses, though not credit card information. By exploiting how the platform handled password resets, he achieved super-administrator access to the entire system
2
. With these elevated privileges, Carroll could issue free tickets of any value to anyone for any event. He discovered a Bonnaroo Platinum ticket priced at $4,000 that he could add to a cart and duplicate without limitation1
.
Source: Wired
Carroll, who runs the startup Seats.aero and conducts independent security research, did not exploit his ticket-issuing capability. Instead, he responsibly disclosed his findings to Front Gate, which patched the vulnerability within 24 hours
2
. The company issued a statement thanking Carroll and confirming "no evidence of exploitation, ticket impact, or compromise of customer information"1
.Carroll is part of Anthropic's Cyber Verification Program, which provides approved security researchers access to advanced AI capabilities for legitimate security work. Anthropic stated that without this authorization, Carroll's use of Claude for hacking Front Gate's systems would have been detected and blocked
1
. This program reflects the delicate balance between enabling defensive security research and preventing malicious use of AI tools.Related Stories
The incident highlights a pivotal shift in AI cybersecurity research capabilities. Carroll expressed genuine surprise at how easily Claude identified key elements of the exploit technique. "I think there's a very good chance it could have found this exploit end-to-end without me doing anything at all," he noted
1
. This assessment suggests AI tools may soon operate with minimal human guidance to discover complex vulnerabilities across internet infrastructure.For organizations managing sensitive systems, this development signals both opportunity and risk. While AI can help security teams identify weaknesses before malicious actors exploit them, the same technology could enable attackers to scale their operations dramatically. The speed at which Claude generated a sophisticated firewall bypass technique that Carroll himself initially didn't fully understand illustrates how AI can outpace human expertise in specific technical domains. As AI continues to advance, companies will need to accelerate their security practices, implement more robust monitoring, and prepare for a landscape where vulnerability discovery happens at machine speed rather than human pace.
Summarized by
Navi
06 Aug 2025•Technology

26 Feb 2026•Technology

30 Apr 2026•Technology

1
Policy and Regulation

2
Technology

3
Science and Research
