Personal Data Stolen in Ticket Master Hack | Xuper IT | News

Personal Data Stolen in Ticketmaster Hack

Ticketmaster has revealed it suffered a security breach, believed to have affected up to 40,000 UK customers. It said the breach was believed to have only affected UK customers who purchased or attempted to purchase tickets between February and 23 June 2018. As a precaution, they have also informed international customers who purchased or attempted to purchase tickets between September 2017 and 23 June 2018.

Information that may have been compromised includes names, addresses, email addresses, telephone numbers, payment details and Ticketmaster log-in details.

On twitter the firm stated that some personal or payment information may have been accessed by an unknown third party and all affected customers have been contacted.

In an email to the affected customers, Ticketmaster said it has a website set up to answer questions and offered a free 12 month identity monitoring service. It also advised customers to reset their passwords.

The firm stated they are confident they have complied with General Data Protection Regulation (GDPR) by acting very quickly and informing the relevant authorities, including the Information Commissioner’s Office. Forensic teams and security experts are working to understand how the data was compromised and the UK’s National Cyber Security Centre is monitoring the situation and working to understand the incident.

Experts are warning members of the public to be on the lookout for follow-up phishing scams

One expert said members of the public should now be on the lookout for follow-up phishing scams. Brooks Wallace from the cyber-security specialist Trusted Knight said”If you receive any emails purporting to be from Ticketmaster asking for any personal information, discard them. If you need to contact Ticketmaster, type the website address into your browser and log-in that way.”

 

How to spot phishing scams:

While phishing scam emails can often look convincing at first glance, it’s important to always check your emails closely that may be asking you to download attachments, click through to a link, or provide personal information. There’s often a few errors that can give away scam emails:

  • Mismatched URL’s – Before clicking on a URL, if you hover your mouse over the top of the URL you should see the actual address. If the hyperlinked address is different from the address displayed, it is probably malicious.
  • Poor spelling and grammar – When big companies send out emails, they will often have been reviewed for spelling and grammar mistakes. If a message is filled with mistakes, it’s likely it didn’t come from that company.
  • The message asks for personal information – No matter how official the email looks, it can be a bad sign if it’s asking for your personal information.  Your bank doesn’t need to know your account number (it already knows it). And a legitimate company would never ask over email for your password, debit/credit cards numbers, or answers to your security questions.
  • An offer too good to be true – If you receive a message from someone unknown to you who is making big promises, the message is probably a scam.
  • The email address – Look closely at the email address as scams will have slight differences to the organisations official email address, usually a change of spelling or domain (e.g. examplexuper@gmail.com or example@xuuper.com rather than the official – example@xuper.com).

Overall, always look closely at your emails, never give out personal information and if you have any concerns, go the organisations official website, check their official contact details and contact them to inform them of the email and check if it’s from them or not.