Ticketmaster got hacked.
The nation’s largest ticket vendor tells customers today, by email, “an unauthorized third party obtained information from a cloud database hosted by a third-party data service provider.”
Hackers hit the cloud database between April 2 and May 18. They stole customer names, contact info and credit card numbers.
Ticketmaster has not revealed how many concertgoers were affected, or the name of the data service provider.
“We have not seen any additional unauthorized activity in the cloud database since we began our investigation,” the email continues.
Ticketmaster is working with Federal investigators to track down the suspected hackers. The company says this investigation is why customers were not notified until today, more than a month after the breach.
What’s Ticketmaster doing to prevent this from happening again?
“We have… taken a number of technical and administrative steps to further enhance the security of our systems and customer data,” the email reads. “These measures include rotating passwords for all accounts associated with the affected cloud database, reviewing access permissions, and increased alerting mechanism deployed in the environment.”
Good luck deciphering that last one.