Ticketmaster confirms data breach, won't say how many North American customers compromised
Ticketmaster confirmed that hackers accessed customers personal information.
Customers last week began posting notices Ticketmaster sent notifying of their involvement in the breach.
The notice, included in a filing with the Maine Attorney General, says that "an unauthorized third party obtained information from a cloud database hosted by a third-party data services provider," between April 2 and May 18.
The company said the breach affected greater than 1,000 customers in the filing.
PC Mag reported Friday that a hacking group called ShinyHunters claimed to have stolen 1.3TB of data from the ticket broker.
Ticketmaster pointed to a support document when asked for comment but did not provide further comment. The document says that the breach involves customers who purchased tickets with the company in North America.
Accessed information, "may include email, phone number, encrypted credit card information as well as some other personal information provided to us" the page says. The company says they believe that customers who have not been notified are not involved in the breach.
Lawsuit pending in Ticketmaster data breach
California residents Cynthia Ryan and Rosalia Garcia filed a lawsuit over the data breach in May in California’s Central District Court.
The pair allege that both Ticketmaster and Live Nation failed to properly secure their personal information such as full names, addresses, email addresses, phone numbers, ticket sales and event details, order information and partial payment card data.
The information was then listed for sale for $500,000 on the dark web, the lawsuit alleges.
“[The] compromised payment data includes customer names, the last four digits of card numbers, expiration dates, and even customer fraud details,” the lawsuit reads.
Live Nation made a regulatory filing May in which the company said "a criminal threat actor'' tried to sell Ticketmaster data on the dark web. Live Nation is investigating the data breach.
Ticketmaster data breach: what to do
Ticketmaster is offering customers identity monitoring services through TransUnion according to the notice. Customers must enroll within 90 days of receiving the notice.
The company recommends that customers monitor their credit and bank accounts for signs of suspicious activity.
Disclaimer: The copyright of this article belongs to the original author. Reposting this article is solely for the purpose of information dissemination and does not constitute any investment advice. If there is any infringement, please contact us immediately. We will make corrections or deletions as necessary. Thank you.