Ticketmaster, a ticket sales and distribution company, has suffered a breach that compromised payment card and personal information of customers who made purchases on its UK website.
According to the company, the breach was carried out through malicious software on a customer support product by third-party supplier Inbenta Technologies. The product has now been disabled across all of Ticketmaster websites.
The incident is said to have occurred between February and 23 June 2018 for UK customers and between September 2017 and 23 June 2018 for international customers who purchased or attempted payments on Ticketmaster website.
The breach affected less than 5% of the company’s global customer base, excluding customers in North America.
“Forensic teams and security experts are working around the clock to understand how the data was compromised. We are working with relevant authorities, as well as credit card companies and banks,” the company said in a statement.
Meanwhile, UK-based mobile-only bank Monzo claimed that it alerted Ticketmaster regarding an increased fraud on its customer accounts in April this year.
“On Thursday 19th April, they told us an internal investigation had found no evidence of a breach and that no other banks were reporting similar patterns,” says a statement from Monzo.
As a precaution, Monzo replaced the cards of all its customers who used them to make purchases on Ticketmaster website.