Ticketfly breach exposes the private information of more than 26 million
The Ticketfly data breach that forced the ticket distribution service to temporarily disable website functionality on May 31 is reportedly responsible for the exposure of the private information of at least 26 million Ticketfly users.
Web security entity and founder of Have I Been Pwned, a website that enables its visitors to enter their email addresses to determine whether their addresses have been leaked, Troy Hunt found that a minimum of 26,151,608 Ticketfly email addresses were published in the breach. Hunt did not offer a specific number of the usernames, phone numbers, home and billing addresses that were compromised during the breach. It is not currently clear if credit card information and account passwords were shared during the hack, but Hunt believes that this is not the case — at least for now. Such information, however, could be disseminated if the hacker continues to upload files to a public server, the very one to which the hacker has already shared much of the private data recovered during the breach.
The hacker behind the Ticketfly takedown supposedly notified Ticketfly of a security flaw prior to the infringement on May 31. At the time, the hacker requested a ransom of one bitcoin in exchange for repair of the gap. When Ticketfly did not pay the hacker the desired amount, the hacker began the breach. Ticketfly has not released a statement regarding the expanse of the compromised information.
H/T: Consequence of Sound