Ticketmaster data breach - 10 things to know with detail
- 1. Date of Breach: The Ticketmaster data breach occurred between September 2017 and June 2018.
- 2. Scope of Breach: The breach impacted approximately 5% of Ticketmaster's customers, which amounts to around 40,000 individuals.
- 3. Type of Data Compromised: The compromised data included names, addresses, email addresses, telephone numbers, payment details, and login credentials.
- 4. Cause of Breach: The breach was attributed to a third-party supplier of Ticketmaster's chat support service, Inbenta Technologies, whose software was compromised.
- 5. Method of Breach: The attackers injected malicious code into the Inbenta software, which was then used to steal customer data during the checkout process.
- 6. Detection of Breach: Ticketmaster was made aware of the breach in June 2018 after receiving reports of fraudulent activity from some customers.
- 7. Response to Breach: Ticketmaster immediately disabled the Inbenta chat support service and launched an investigation into the breach.
- 8. Notification of Affected Customers: Ticketmaster notified affected customers and advised them to monitor their financial accounts for any suspicious activity.
- 9. Legal Consequences: Ticketmaster faced legal action in the UK following the breach, with the Information Commissioner's Office (ICO) fining the company £1.25 million for failing to protect customer data.
- 10. Preventative Measures: In response to the breach, Ticketmaster implemented enhanced security measures and conducted a review of its third-party suppliers to prevent similar incidents in the future.