An international ticketing services company, See Tickets, disclosed a massive data breach that has potentially exposed the payment card information of its customers.
The incident took place back in April 2021, when the company first became aware of the unauthorized access to event checkout pages. Through their response mitigation tactics, See Tickets managed to shut down malicious activity only in January 2022.
Allegedly, threat actors used snippets of JavaScript code within the checkout pages to extort the payment data of concertgoers.
The investigation, carried out with the help of Visa, MasterCard, American Express, and Discover, as well as a number of forensics firms, concluded that cybercriminals may have received access to data provided by customers between June 25, 2019, and January 8, 2022. The information could have included name, address, zip code, payment card number, card expiration date, and CVV number.
Social Security numbers, state identification numbers, and bank account information appear to be safe as they aren’t stored within See Ticket’s system.
“While our investigation continues and we are not certain your information was affected, we are notifying you out of an abundance of caution based on available information,” the data reach report explains.
All customers are advised to keep an eye on their bank account statements, as well as stay alert for identity theft and phishing attempts. The scope of the breach, however, remains unknown.
Your email address will not be published. Required fields are markedmarked