Ticketmaster Warns Aussies Of Credit Card Breach
Australians are being warned their credit card details may have been leaked, after malware was discovered by Ticketmasters’ UK operations.
In a statement sent to Australian customers, Ticketmaster admitted malware was discovered on a customer support hosted by Inbenta:
“As a result of Inbenta’s product running on Ticketmaster International websites, some of our customers’ personal or payment information may have been accessed by an unknown third party.”
Inbeta asserts had it known about the presence of new custom script, it would have “advised against it,” citing “greater risk for vulnerability.”
“The attacker located, modified, and used this script to extract the payment information of Ticketmaster customers processed between February and June 2018,” claims Inbeta.
The matter has since been resolved, with Inbeta “completely confident” that no other customers have been compromised.
Australian customers who have bought (or attempted to buy) tickets between September last year to June 23rd have been sent a warning letter from Ticketmaster.
Customers are being advised to change their Ticketmaster passwords.
Affected customers have reportedly been offered a complimentary identity monitoring service from a “leading” vendor.
According to The Guardian, tens of thousand of Ticketmaster UK customers have been affected by the breach, with several detecting fraudulent transactions on accounts.
In a published statement, digital bank ‘Monzo’ claims it first detected signs of compromise in April, and reportedly informed Ticketmaster on April 12th. Ticketmaster reportedly denied the matter.
Having been alerted earlier, some commentators question whether GDPR repercussions will apply.