Ticketfly Data Breach May Have Exposed 26 Million Customer Records

Ticketfly Data Breach May Have Exposed 26 Million Customer Records

June 4, 2018         Written By Bill Hardekopf

Ticketfly, a concert ticketing service, went offline this weekend after hackers penetrated the website.

While Ticketfly has not revealed how many customers could have been affected by the breach, Marketwatch reported the information of 26 million customers could have been exposed, including names, email addresses and phone numbers.

Visitors to the Ticketfly website will find the service is currently offline, but the company said in a press release that it will be back soon.

The website went down Wednesday, which lead concert promoters struggling to sell tickets for upcoming events. The hacker contacted Motherboard and sent the news outlet employee and customer information they had stolen from the database.

The individual told Motherboard they had warned Ticketfly about the security vulnerability, and had offered to reveal it for one bitcoin. When they received no response from the company, they took control of the website.

Ticketfly has hired a forensic cybersecurity team to determine the extent of the breach, as well as the vulnerabilities that lead to the incident.

The breach was not as bad as it could have been since it does not appear as if passwords or payment card information were stolen. However, customers who have purchased tickets through Ticketfly or its parent company, Eventbrite, are well advised to change their password.

Additionally, since the hackers have customer names and email addresses, consumers should be wary if they receive a message from Ticketfly or Eventbrite that asks them to download a file or follow a link to log-in to a website. Criminals can use this information to send phishing emails. While the email may contain Ticketfly branding and appear to come from the company, it could actually come from cybercriminals. If someone downloads a file from a phishing email, it can infect their system, and the hacker can do just about anything from taking over the device to installing malware that will allow them to steal banking information.

Also, if someone follows the link of a phishing email and uses their credentials to log-in, the criminal can steal their username and password.

When in doubt, check the information that comes after the @ symbol in an email address. Phishing emails will often contain misspellings or nonsense characters instead of @ticketfly. Also, customers can also log directly into the website. Any communication from the company should appear on their website.

The information contained within this article was accurate as of June 4, 2018. For up-to-date
information on any of the terms, cards or offers mentioned above, visit the issuer's website.


About Bill Hardekopf

Bill Hardekopf is the CEO of LowCards.com and covers the credit card industry from all perspectives. Bill has been involved with personal finance for over 15 years. He is a frequent contributor to Forbes, The Street and The Christian Science Monitor.
View all posts by Bill Hardekopf
Featured Low Interest Card
Top Features : 1.25X miles on every purchase; no annual fee; bonus of 20,000 miles once $1,000 is spent in first 3 months
Featured No Annual Fee Card
Top Features : Earn cash back twice. 1% when you buy plus 1% as you pay; 0% APR for 18 months on balance transfers
Featured Bad Credit Card
Top Features : Reports to all three credit bureaus, perfect credit not required for approval
Featured Fair Credit Card
Top Features : No annual fee; access to higher credit line after making first 5 monthly payments on time
Featured Limited/No Credit
Top Features : No annual fee; reports to major credit bureaus; access to higher credit line after making first 5 monthly payments on time
Featured Bad Credit Card
Top Features : No Annual Fee; Cash Back match at the end of your first year; Social Security Alerts