Geraldine Strawbridge

Geraldine Strawbridge is a graduate from the University of Glasgow. As the Editor of Cyber Radio, Geraldine is focused on delivering the latest cyber security news whilst making cyber security more relatable to people in their everyday lives.

Ticketmaster UK has suffered a cyber-attack in which the data and payment information of up to 40,000 UK customers may have been compromised.

The ticketing firm said that malicious software running on a third-party customer support product run by Inbenta Technologies was behind the attack.

Customer information that may have been compromised by the breach includes: name, address, email address, telephone number, payment details and Ticketmaster login details.

The company reassured customers that as soon as they discovered the malicious software, they disabled the Inbenta product across all the Ticketmaster websites.

At this stage of the investigation it’s thought that just 5% of the company’s global customer base has been affected by the breach and that customers in North America have not been affected.

A Ticketmaster spokesperson commented on the breach: “As a result of Inbenta’s product running on Ticketmaster International websites, some of our customers’ personal or payment information may have been accessed by an unknown third-party.

“We have contacted customers who may have been affected by the security incident. UK customers who purchased, or attempted to purchase, tickets between February and June 23, 2018 may be affected as well as international customers who purchased, or attempted to purchase, tickets between September 2017 and June 23, 2018.

“If you have not received an email, we do not believe you have been affected by this security incident based on our investigations. Forensic teams and security experts are working around the clock to understand how the data was compromised. We are working with relevant authorities, as well as credit card companies and banks.”

Ticketmaster has urged customers to monitor their account statements for evidence of fraud or identity theft. If they are concerned or notice any suspicious activity on their account, they should immediately contact their bank or credit card companies.

As a precautionary measure, all notified customers will also need to reset their passwords when they next log into their accounts.

Sign up for our fortnightly newsletter at https://www.cyberradio.com/ to keep up to date with the latest cyber security news and advice on how to keep you and your family safe online.