author photo
By SecureWorld News Team
Mon | Jun 11, 2018 | 4:13 AM PDT

Ticketfly is a ticket seller for concert venues across the U.S. and Canada, for shows ranging from the Thompson Twins to Slayer.

Millions of accounts compromised in Ticketfly 2018 breach

Now we know just how significant the 2018 cyber attack Ticketfly previously announced actually was. 

  • 27 million accounts had data compromised in the attack
  • Hackers obtained names, addresses, email addresses, and phone numbers connected to Ticketfly accounts
  • As a precautionary measure, the company "Forced a reset for all passwords for both ticket buyers and Ticketfly venue/promoter clients before we brought the system back online"

And as its ticketing system came back online, it appears Ticketfly provided notification language for individual venues to send out to customers instead of sending notices itself.

Ric Peavyhouse, a Ticketfly customer in the Portland, Oregon, area, shared this notification letter with SecureWorld, and he wasn't too happy with how the ticket seller handled the situation. 

ticketfly-hack

"I use TicketFly and it appears that my info was hacked. Checked my Gmail and only found two messages, one from the Aladdin Theater and the other from Revolution Hall. Nothing in spam. Each had the same canned copy about 'ticket sales being restored' and only refer to a 'hack' at the end of the email. They should've sent out an email to alert customers!"

The mention of a hack is at the very bottom of the email. In journalism we call this "burying the lede" and it can get you into trouble.

Perhaps that's why Ticketfly's message was updated on its website: 

"Following our most recent update, we wanted to share some additional thoughts. We recognize how tough and frustrating this has been on everyone—both our clients, and those of you who just want to go see the shows you love. We are deeply sorry this happened. While we've made significant progress, there's still work ahead to make things right. Our top priorities remain ensuring your security, getting everything back up and running, and regaining your trust."

Trust or not, the show must go on for everyone who relies on Ticketfly.

Comments