More than 26 million Ticketfly users have had their personal data exposed in the recent hack of the ticket sales site, according to a new report.
The update comes from Motherboard, and was done in conjunction with security researcher Troy Hunt of HaveIBeenPwned.com, the trusted site which lets users know if their accounts were compromised in any data breaches. According to Hunt, the Ticketfly databases posted by the hacker contain 26,151,608 unique email addresses. The report notes that the “databases did not include passwords nor credit card details. But for most users, they did include their home and billing address and phone numbers.”
So though no financial details were taken, enough personal data was taken to make this a rather painful breach, especially considering the majority of hacked users did indeed have their addresses and phone numbers exposed. It’s unknown, of course, how many people have accessed the data, but Motherboard did note that the databases were posted on a public server.
More On Ticketfly
Ticketfly is one of the largest ticket distributors in North America, which was hacked late last week — reportedly after the company balked at the hacker’s demand of one bitcoin to share the vulnerability with the site.
Amazingly, Ticketfly’s website is still mostly down as of this writing, nearly six days after the site was taken offline due to the security incident. The website’s Ticketfly Backstage section is accessible again — that section of the site includes Box Office, Emailer, reporting, scanning, printing, and ticket purchasing (though we certainly wouldn’t fault any Ticketfly users for holding off on buying more tickets, at least for now).
Users are being asked to create new passwords upon logging in, for obvious reasons. It does not appear that Ticketfly has posted any recent updates on when its site will fully come back online.