Jump to content

Ticketmaster UK is the next victim in a data breach

ItsMitch
By ItsMitch
in Tech News
 Share
Posted

S: Ticketmaster & ICO

Ticketmaster UK has confirmed to the authorities and to ICO (Information Commissioner's Office) teams they have suffered a data breach on the 23rd of June (They have confirmed it today) the timing is in line with the new EU GDPR guidelines on disclosing any kind of data breaches to the potential victims. Ticketmaster also believes they have acted "very well" in accordance to GDPR guidelines on full disclosure. 

Quote

What Happened?

On Saturday, June 23, 2018, Ticketmaster UK identified malicious software on a customer support product hosted by Inbenta Technologies, an external third-party supplier to Ticketmaster.

As soon as we discovered the malicious software, we disabled the Inbenta product across all Ticketmaster websites.

Less than 5% of our global customer base has been affected by this incident. Customers in North America have not been affected.

As a result of Inbenta's product running on Ticketmaster International websites, some of our customers' personal or payment information may have been accessed by an unknown third-party.

We have contacted customers who may have been affected by the security incident. UK customers who purchased, or attempted to purchase, tickets between February and June 23, 2018 may be affected as well as international customers who purchased, or attempted to purchase, tickets between September 2017 and June 23, 2018.

If you have not received an email, we do not believe you have been affected by this security incident based on our investigations.

Forensic teams and security experts are working around the clock to understand how the data was compromised.

We are working with relevant authorities, as well as credit card companies and banks.

(Bolded data is important)

 

What was breached? 

Ticketmaster believe from their internal review that: Email addresses, passwords, telephone numbers, payment details and Ticketmaster login credentials was stolen from their servers. 

Will I be contacted?

Yes, Ticketmaster will be sending out emails to all its users to inform them.

 

My personal thoughts on this are fairly simple, it's good that Ticketmaster quickly disclosed the issues to the authorities and to it's customers, it's sad that it's reputation will take a hit although, but that's the costs of having a data breach. 

 

E: 

Quote

Based on our investigation, we understand that only certain UK customers who purchased or attempted to purchase tickets may have been affected by the incident. As a precaution we are also notifying all Ticketmaster International customers outside the UK that they will need to reset their passwords when they next log into their accounts. Customers in North America are not affected.

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
10 minutes ago, SC2Mitch said:

passwords

If that's true Ticketmaster is going to be in for a world of hurt. You never, ever store passwords in plaintext on anything. That behavior is so negligent that I wouldn't be surprised to hear of lawsuits soon.

 

Of course, that's if the article wasn't overstating.

Current LTT F@H Rank: 90    Score: 2,503,680,659    Stats

Yes, I have 9 monitors.

My main PC (Hybrid Windows 10/Arch Linux):

OS: Arch Linux w/ XFCE DE (VFIO-Patched Kernel) as host OS, windows 10 as guest

CPU: Ryzen 9 3900X w/PBO on (6c 12t for host, 6c 12t for guest)

Cooler: Noctua NH-D15

Mobo: Asus X470-F Gaming

RAM: 32GB G-Skill Ripjaws V @ 3200MHz (12GB for host, 20GB for guest)

GPU: Guest: EVGA RTX 3070 FTW3 ULTRA Host: 2x Radeon HD 8470

PSU: EVGA G2 650W

SSDs: Guest: Samsung 850 evo 120 GB, Samsung 860 evo 1TB Host: Samsung 970 evo 500GB NVME

HDD: Guest: WD Caviar Blue 1 TB

Case: Fractal Design Define R5 Black w/ Tempered Glass Side Panel Upgrade

Other: White LED strip to illuminate the interior. Extra fractal intake fan for positive pressure.

 

unRAID server (Plex, Windows 10 VM, NAS, Duplicati, game servers):

OS: unRAID 6.11.2

CPU: Ryzen R7 2700x @ Stock

Cooler: Noctua NH-U9S

Mobo: Asus Prime X470-Pro

RAM: 16GB G-Skill Ripjaws V + 16GB Hyperx Fury Black @ stock

GPU: EVGA GTX 1080 FTW2

PSU: EVGA G3 850W

SSD: Samsung 970 evo NVME 250GB, Samsung 860 evo SATA 1TB 

HDDs: 4x HGST Dekstar NAS 4TB @ 7200RPM (3 data, 1 parity)

Case: Sillverstone GD08B

Other: Added 3x Noctua NF-F12 intake, 2x Noctua NF-A8 exhaust, Inatek 5 port USB 3.0 expansion card with usb 3.0 front panel header

Details: 12GB ram, GTX 1080, USB card passed through to windows 10 VM. VM's OS drive is the SATA SSD. Rest of resources are for Plex, Duplicati, Spaghettidetective, Nextcloud, and game servers.

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
  • Author
3 minutes ago, sazrocks said:

If that's true Ticketmaster is going to be in for a world of hurt. You never, ever store passwords in plaintext on anything. That behavior is so negligent that I wouldn't be surprised to hear of lawsuits soon.

 

Yeah, Ticketmaster being very sparse on the password details. They did add this at the FAQ which I missed. 

 

14 minutes ago, SC2Mitch said:
Quote

Based on our investigation, we understand that only certain UK customers who purchased or attempted to purchase tickets may have been affected by the incident. As a precaution we are also notifying all Ticketmaster International customers outside the UK that they will need to reset their passwords when they next log into their accounts. Customers in North America are not affected.

 

 

Link to comment
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Tech News

×