HQ/EMEAFind out how we can help your business
See Tickets, a prominent ticketing service-providing company, has warned 300,000 of its customers about another web skimming attack that impacted critical information. This breach is the second incident that compromised the company in less than a year, which raises serious concerns about the security of personal data on the company’s websites.
See Tickets accommodates various events, such as comedy shows, festivals, lifestyle, and sporting events. Moreover, the company plays a significant role in the ticketing industry, operating regionally and internationally in North America and Europe.
See Tickets identified unwanted visitors within its e-commerce pages.
Earlier this year, See Tickets discovered a breach in their e-commerce websites, which they temporarily halted. The firm disseminated notification letters to its customers and stated that an unauthorised third party accessed its e-commerce checkout pages and launched a malicious code.
The malicious code is a web skimmer, which has already harvested and exfiltrated information from the checkout pages from February to July this year. The notification letters confirmed that the exfiltrated data contained usernames, addresses, and payment card details.
On the other hand, the company claimed they had not discovered evidence of information misuse from the stolen data. However, the stolen data could circulate and be traded in the cybercriminal landscape. Hence, other threat actors could use the stolen details for other malicious activities.
The company assured everyone they had fortified their security defences better to protect payment card information on their web pages. Unfortunately, this newly discovered incident is the second of its kind in under a year, indicating that the threat actors could easily infiltrate the company.
The first skimmer attack against See Tickets occurred in April 2021, and the company revealed it in October 2022. The first attack has stolen similar data. This recurring pattern should result in a reevaluation of See Tickets’ security infrastructure and a renewed commitment to safeguarding customer information.
Users need to monitor their financial statements and credit reports closely so they can report any unusual activities that could occur in their accounts. Changing passwords and adopting 2FA protocols could also help users increase their security against fraud and scams. Finally, users should be vigilant about phishing attempts since threat actors could use the stolen information to distribute emails that could harvest more details about the impacted customers of See Tickets.
