Ticketek has confirmed that some customer details “may have been impacted” by a new cyber incident, they’ve written in a statement sent to users and the TEG website.
On Friday (31 May), a Ticketek statement on the TEG website reads that the company has “become aware” of a cyber incident that has impacted customers’ account information.
In the statement, Ticketek revealed that it has notified the Australian Cyber Security Centre (ACSC) and is liaising with the Office of the Australian Information Commissioner (OAIC) and the National Office of Cyber Security to deal with the incident.
“Ticketek has secure encryption methods in place for all passwords and no Ticketek customer account has been compromised,” the statement reads.
“Additionally, Ticketek utilises secure encryption methods for online payments and uses a separate system to process online payments, which has not been impacted. Ticketek does not hold identity documents for its customers.”
Since the company’s third-party supplier, which hosts Ticketek Australia account holders’ information on a cloud-based service, brought the cyber incident to Ticketek’s attention, the company has “worked diligently” and put every resource into completing an investigation. They have since communicated with customers and stakeholders who may have been affected as fast as possible.
“The available evidence at this time indicates that, from a privacy perspective, customer names, dates of birth and email addresses may have been impacted,” the statement continued. “Our priority at this initial stage is to best protect our customers, people and all others who have entrusted us with their information.
“As such, we have already commenced notifying those customers who may have been impacted. We apologise for any concern that this news may cause – we will provide further updates as more information becomes available.”
Ticketek has also provided a handy cyber security guide for anyone looking to better protect themselves online. You can find that here.
On Wednesday (29 May), Ticketmaster was hit by an alleged data breach, with 560 million customers said to be affected. It’s still unclear whether Australians have been affected.
Cyber Daily reports that hacker group ShinyHunters claimed responsibility and reportedly asked for a one-time price of $US500,000 ($750,000).
The hackers reportedly posted the alleged stolen data on a web hacking forum. The group claimed to have the personal details of 560 million Ticketmaster customers, with 1.3 terabytes of data sorted in 16 folders.
The personal details ShinyHunters claimed to have included names, addresses, incomplete credit card numbers – the last four digits and expiry dates, phone numbers, and payment details.
The Australian government is investigating the alleged hack.
