Advertisement

Thousands Of Aussies Potentially Targeted By Ticketmaster Data Breach

One of the world's largest ticketing companies today began contacting Australian customers whose personal and payment details may have potentially been stolen in a hacking incident. 

What you need to know
  • Ticketmaster UK identified "malicious software" last week that was distributing data to a unknown third-party
  • Australian customers who were potentially affected were contacted via email on Thursday
  • Users have been urged to change their passwords

Ticketmaster Australia emailed customers on Thursday morning after the company's British Branch, Ticketmaster UK, identified "malicious software on a customer support product" hosted by the third-party supplier Inbenta Technologies.

In a statement, Ticketmaster said it discovered the Spanish technology company was exporting UK customers' data to an unknown third-party on June 23.

Australians who purchased tickets via Ticketmaster between September 2017 and June this year were warned their personal data may have been compromised.

"Whilst we have no evidence to suggest your data has been compromised, we are notifying you out of an abundance of caution," the email read.

"Forensic teams and security authorities are working around the clock to understand how the data was compromised."

Ticketmaster set up a webpage to assist customers concerned about their details. Image: Ticketmaster

The information which may have been compromised includes names, addresses, emails, telephone numbers, payment details and Ticketmaster login details.

While around 30,000 UK customers were directly affected by the breach, it is yet to be confirmed whether any Australian details were exposed in the incident.

"Less than five percent of our global customer base has been affected by this incident," the company said.

"If you have not received an email, we do not believe you have been affected by this security incident based on our investigations."

Ticketmaster said the Inbenta software had been disabled across all its websites, and urged to change their passwords as well as continue to monitor their credit card statements for evidence of fraud or identity theft.