Ticketfly Data Breach: 26,151,608 Customer Emails Exposed
NEWS

Ticketfly Data Breach: 26,151,608 Customer Emails Exposed

Online ticketing service Ticketfly has been targeted by a malicious actor and as a result, users’ personal information was stolen. In addition to that, Ticketfly’s website was defaced, and a message was dropped on the compromised homepage which said “Your security down, I’m not sorry. Next time I will publish database”.

Related Story: MyHeritage DNA Service Exposes 92 Million Account Details

Ticketfly Data Breach: What Happened?

Apparently, Ticketfly’s parent company, Eventbrite, said it was investigating the attack but didn’t provide any information about how the attack occurred or what type of information was compromised.

Nonetheless, the hacker posted a number of Ticketfly’s database files to a public server. According to data breach expert Troy Hunt the files contained some 26,151,608 email addresses, together with users’ names, phone numbers, and home and billing addresses. In other words, a large amount of sensitive details has been compromised. The only good thing is that the files didn’t contain any passwords or credit card details.

As reported by Motherboard, the hacker said that they reached out to Ticketfly before the breach, alerting the company of a security flaw, and demanding a ransom of 1 bitcoin to help them fix the flaw. After the company didn’t reply to their emails, the hacker defaced the site.
The data breach has been confirmed by Ticketfly. The company released a statement where it said that it is working with leading third-party forensic cybersecurity experts to inspect what happened and fix the issue. Here is what the statement reads:

Last week we learned that Ticketfly.com was the target of a cyber incident. In consultation with leading third-party forensic and cybersecurity experts, we confirmed that some customer information has been compromised as part of the incident, including names, addresses, emails, and phone numbers of Ticketfly fans. We understand the importance our customers place on the privacy and security of their data and we deeply regret any unauthorized access to it. This is an ongoing investigation and we will continue to provide updates as appropriate.

Related Story: myPersonality App Exposes Personal Data of Millions of Facebook Users

Following the breach Tickerfly was offline for at least 5 days but it seems to be back to normal now.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum for 4 years. Enjoys ‘Mr. Robot’ and fears ‘1984’. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles!

More Posts

Leave a Comment

Your email address will not be published. Required fields are marked *

Time limit is exhausted. Please reload CAPTCHA.

Share on Facebook Share
Loading...
Share on Twitter Tweet
Loading...
Share on Google Plus Share
Loading...
Share on Linkedin Share
Loading...
Share on Digg Share
Share on Reddit Share
Loading...
Share on Stumbleupon Share
Loading...