Ticketmaster says 'inaccurate information circulating' about breach.
Ticketmaster has confirmed attackers stole email addresses, phone numbers, and encrypted payment card information in last month's breach.
In a notification, the company said it “discovered unauthorized activity on an isolated cloud database hosted by a third-party data services provider” in the incident, and there has been no more unauthorized activity since the detection.
Specifically, the affected database contained limited personal information of some customers who bought tickets to events in North America and “this may include email, phone number, encrypted credit card information as well as some other personal information provided to us.”
The company was also keen to point out that Ticketmaster accounts were not affected, and hit out at “a lot of inaccurate information circulating” and asked users to “only consider facts confirmed if you hear them directly from us.”
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
