Another major firm has made it known that its customers’ personal information may have been compromised due to a data security incident involving a third-party supplier.
Ticketmaster UK, part of US giant Live Nation Entertainment, said local customers who bought – or even just tried to buy – tickets between February and June 23, 2018 may have been impacted, as well as international customers with transactions or attempts from as far back as September 2017. Customers in North America, meanwhile, can breathe a sigh of relief as the company stressed that they are not affected by the data breach.
Explaining what happened, the ticket marketplace said in a statement: “On Saturday, June 23, 2018, Ticketmaster UK identified that malicious software on a customer support product hosted by Inbenta Technologies, an external third-party supplier to Ticketmaster, was exporting UK customers’ data to an unknown third-party. As soon as we discovered the malicious software, we disabled the Inbenta product across all Ticketmaster websites.
“As a result of Inbenta’s product running on Ticketmaster International websites, some of our customers’ personal or payment information may have been accessed by an unknown third-party. Forensic teams and security experts are working around the clock to understand how the data was compromised.”
The disabled product was being used on the Ticketmaster International, Ticketmaster UK, GETMEIN!, and TicketWeb websites while possibly exposed information includes names, addresses, email addresses, telephone numbers, payment details, and Ticketmaster login details.
All potentially affected customers, who need to reset their passwords, have been notified and have been offered a free 12-month identity monitoring service. “If you have not received an email, we do not believe you have been affected by this security incident, based on our investigations,” said Ticketmaster UK, which is now working with relevant authorities, banks, and credit card companies.