Tuesday, April 22, 2025
Follow us On Linkedin
HomeCyber Security NewsGlobal Ticketing Giant Hacked: Attackers Accessed Customers’ Payment Data

Global Ticketing Giant Hacked: Attackers Accessed Customers’ Payment Data

Cyber Security NewsHacks

Published on

By Gurubaran
Global Ticketing Giant Hacked: Attackers Accessed Customers’ Payment Data

Supply Chain Attack Prevention

SIEM as a Service

Follow Us on Google News

A Global Ticketing Giant company, See Tickets, recently reported a data breach that exposed the payment card information of over 300,000 customers.

See Tickets, owned by Vivendi Ticketing, revealed the latest breach in a complaint with Maine’s attorney general. 

The ticketing business said that in May, it discovered unusual activity on its e-commerce website

- Advertisement - Google News

An anonymous cybersecurity company investigated and found that hackers “inserted multiple instances of malicious code into a number of its e-commerce checkout pages.”

Data Compromised in the Breach

Between February 28 and July 2, the hackers could access the names, addresses, and payment data of customers who made transactions on the See Tickets website. The compromised information includes:

  • Customer names
  • Addresses
  • Debit or credit card numbers in combination with security codes, access codes, passwords, or PINs.

According to the notification to impacted consumers, the data breach affected over 323,000 See Ticket users.

This attack reveals the prevalence of credit card skimming malware, in which criminals insert malicious code into a website’s checkout pages to steal users’ payment card information.

Card skimming is stealing credit card information or payment card data from online store consumers. Customers are unaware that their transaction data is being intercepted throughout the online purchase checkout procedure.

This issue represents the second known breach that See Tickets has experienced recently. See Tickets disclosed in October 2022 that hackers acquired consumers’ credit card credentials after hacked event checkouts for over two years.

According to the business, the skimming started on June 25, 2019; however, the code wasn’t found until April 2021. 

The malware wasn’t entirely removed from the See Tickets website until over a year later, in January 2022.

Global Ticketing Giant company See Tickets adds that its investigation into the breach was finished on July 21 and that the firm “moved quickly to notify you” — even though it took more than six weeks to contact affected consumers.

Customers who are alerted receive a free year of Kroll credit monitoring service and are urged to be watchful against identity theft and fraud.

Keep informed about the latest Cyber Security News by following us on Google NewsLinkedinTwitter, and Facebook.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

CVE/vulnerability

TP-Link Router Vulnerabilities Allow Attackers to Execute Malicious SQL Commands

Cybersecurity researchers have uncovered critical SQL injection vulnerabilities in four TP-Link router models, enabling...
cyber security

Faster Vulnerability Patching Reduces Risk and Lowers Cyber Risk Index

Trend Micro's Cyber Risk Exposure Management (CREM) solution has highlighted the critical role that...
cyber security

Malicious npm Packages Target Linux Developers with SSH Backdoor Attacks

In a sophisticated onslaught targeting the open-source ecosystem, reports have emerged detailing several malicious...
Cyber Security News

Samsung One UI Vulnerability Leaks Sensitive Data in Plain Text With No Expiration!

A glaring vulnerability has come to light within Samsung's One UI interface: the clipboard...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

Register Now

More like this

CVE/vulnerability

TP-Link Router Vulnerabilities Allow Attackers to Execute Malicious SQL Commands

Cybersecurity researchers have uncovered critical SQL injection vulnerabilities in four TP-Link router models, enabling...
cyber security

Faster Vulnerability Patching Reduces Risk and Lowers Cyber Risk Index

Trend Micro's Cyber Risk Exposure Management (CREM) solution has highlighted the critical role that...
cyber security

Malicious npm Packages Target Linux Developers with SSH Backdoor Attacks

In a sophisticated onslaught targeting the open-source ecosystem, reports have emerged detailing several malicious...

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2025 GBHackers On Security - All Rights Reserved