Australia’s largest ticket sales company, Ticketek, suffered a significant data breach in May that exposed the personal information of over 17 million customers.
The security incident was revealed after a threat actor under the username “Sp1d3r” posted a for-sale ad on a hacking forum. The same threat actors recently attempted to sell a customer database stolen from luxury retailer Neiman Marcus.
Source: CyberInsider
The first confirmation of the incident came via a post on Ticketek’s parent company website TEG on May 31, 2024:
“Ticketek has become aware of a cyber incident impacting Ticketek Australia account holder information, which is stored in a cloud-based platform, hosted by a reputable, global third party supplier,” the notice reads.
“The available evidence at this time indicates that, from a privacy perspective, customer names, dates of birth and email addresses may have been impacted.”
While the company has yet to reveal the number of impacted customers, Troy Hunt’s Have I Been Pwned platform lists 17.6 million unique email addresses alongside names, genders, dates of birth, salutations, and hashed passwords.
Hunt also confirmed the breach on social media platform X on June 28, noting that his info was also included:
The company’s most recent statement provides additional insights, emphasizing that no customer accounts were compromised and that the company will continue to work alongside government agencies in response to the data security incident.
“By way of update, Ticketek has sought and been granted an injunction to prevent any access, dissemination, or publication of the impacted data by any third party,” Ticketek said. “This is part of our commitment to our customers to take all reasonable steps in response to this incident and to protect our customers’ data.”
Most importantly, Ticketek urges customers to watch out for scams and other social engineering schemes because criminals have begun contacting some Ticketek customers regarding their compromised information.
“We are aware some customers have recently been contacted by a third party regarding the impact to their information,” Ticketek explains. “We continue to recommend our customers utilise the guidance provided on our website Statement Regarding Ticketek Cyber Incident – TEG.
To assist you in this process, you can rely on Bitdefender Scamio. Scamio is our AI-powered scam detector that acts like your personal scam-busting assistant 24/7.
Whenever you’re unsure about a link, message or proposal, check it with Scamio on WhatsApp, Facebook Messenger or a web browser for free! Copy/paste a text or link, describe the situation, and upload the image or the QR code you want to verify. Scamio will analyze the data and tell you if anyone is trying to scam you.
You can also help all of your friends and family members stay safe by sharing Scamio with them in France, Germany, Spain, Italy, Romania, Australia and the UK.
Here’s how Bitdefender Digital Identity Protection can help:
Read more about our comprehensive features, here.
tags
Alina is a history buff passionate about cybersecurity and anything sci-fi, advocating Bitdefender technologies and solutions. She spends most of her time between her two feline friends and traveling.
View all postsNovember 14, 2024
September 06, 2024