HQ/EMEAFind out how we can help your business
Legends International, an entertainment venue management firm, announced that it experienced a data breach in November of last year.
Based on reports, the cybersecurity incident has affected employees and visitors to its managed venues.
In a notification letter to authorities, the company revealed that it detected unauthorised activity in its IT systems on November 9, 2024, which led to an investigation assisted by external cybersecurity experts.
The investigation confirmed that personal data files were exfiltrated, but the notification does not specify the exposed data types.
Legends International is a type of entity that financially motivated threat actors will likely target.
Legends International is a global sports and entertainment services provider involved in venue planning, sales, partnerships, hospitality, merchandise, and technology solutions, generating over $1.1 billion in annual revenue.
The firm oversees over 350 venues across five continents, including prominent locations in Los Angeles, New York, Texas, Spain, and the UK. In addition, the company recently broadened its reach by acquiring ASM Global, a leading venue management firm with a global presence.
As of now, the extent of the data breach and the total number of individuals affected remain unclear. However, given the scale of the company’s operations and the sensitive data it manages, there is justified concern.
On the other hand, concerned parties have contacted the company for further information, but it has yet to provide comments.
However, in the letter to those impacted, Legends International indicated that security measures had already been implemented before the incident, and they took additional steps to restore the systems after the cyberattack. Still, specific details about these measures were not provided.
Affected individuals have been offered a 2-year identity theft detection service through a third-party provider and have until July 31, 2025, to sign up.
The letter also states that there is no evidence suggesting the misuse of personal information due to this incident, although individuals are encouraged to stay vigilant.
No ransomware groups have yet to claim responsibility for the assault on Legends International. Thus, the nature of the attack and the identity of the attackers remain uncertain.
