Ticketing giant Ticketmaster has informed Australian customers that their personal data may have been compromised in a suspected data breach.
In an email sent to customers on Thursday morning, Ticketmaster said it discovered “malicious software” in a customer support system on Saturday, 23rd June, operated by third-party company Inbenta Technologies.
“As soon as we discovered the malicious software, we disabled the Inbenta product across all Ticketmaster websites,” the company wrote.
“As a result of Inbenta’s product running on Ticketmaster International websites, some of our customers’ personal or payment information may have been accessed by an unknown third-party.”
Ticketmaster said the suspected breach may have affected people who purchased tickets through the company between September 2017 and 23rd June 2018, and all customers who received the email will need to reset their passwords when they next log in to their accounts.
“Whilst we have no evidence to suggest your data has been compromised, we are notifying you out of an abundance of caution,” the company said.
“Forensic teams and security experts are working around the clock to understand how the data was compromised.
“We are working with relevant authorities, as well as credit card companies and banks.”
The company has recommended that any customers who were potentially affected to monitor their accounts for any evidence of fraud or identity theft. It’s also offering impacted customers a free 12 month identity monitoring service.
“Ticketmaster understands the importance of your personal information. We take the protection of that information very seriously and we are sorry to have to write to you in these circumstances,” the company said.
Read Ticketmaster’s email in full, below.