Everything ticketmaster is connected with has a bad smell. It has been seen that they scam ticket buyers with robot purchasers, and then resell the tickets for many times the original ticket price. Their robot callers outnumber genuine buyers by 100 to one, so the tickets are sold out in minutes (seconds??).
With their command of software and malware, I would not be surprised to see that the JS insert came from inside ticketmaster, as their data handler stated that all new JS was to be vetted by them prior to insertion, and they would have advised against this. That means a crook high up in ticketmaster did this. I would like to see an analysis of the exploit to see if it was operated by a bunch of robot callers???