Ticketmaster company Kartenhaus breach affects 66,000
Technorati Tag: Security Breach
Date Reported:
10/5/07
Organization:
Ticketmaster
Contractor/Consultant/Branch:
Kartenhaus
Victims:
Kartenhaus customers who purchased event tickets between October 24th, 2006 and September 30th, 2007 on the Kartenhaus.de web site.
Number Affected:
66,000
Types of Data:
Name, billing address and credit card number
Breach Description:
Confidential information relating to Kartenhaus.de customers was stolen by unidentified individuals. Ticketmaster is the parent company of Kartenhaus.
Reference URL:
English Version of the Report
Report Credit:
Heise Zeitschriften Verlag
Response:
From the online article cited above:
"The Hamburg ticket sales office Kartenhaus informed its customers on Thursday that still unidentified culprits had stolen credit card numbers and billing addresses"
"Some 66,000 customers who purchased tickets with a credit card from the Kartenhaus.de website between October 24, 2006 and September 30, 2007 were affected."
"The parent company, Ticketmaster, advised customers to "check your credit card bills as soon as possible to identify any irregularities or abuse"."
[Comfyllama] Beyond this advice, I would suggest that victims cancel credit cards and ask for a re-issue as a precaution. If a customer just checks for irregularities and finds one, then the fraud has already happened. If you cancel and get a re-issued card, then you are in a position of proactive protection.
"It is still not known how the thief or thieves gained access to the data. Apparently only one server was affected."
[Comfyllama] Maybe a hack, maybe an insider, maybe and employee mistake, maybe little green men with gorilla suits on. It would be nice to know a little more.
"Ticketmaster Europe's Vice President, Tommy Higgins, said that as soon as the attack was discovered, an internal team was assembled to track down the security hole and to inform all necessary personnel."
[Comfyllama] "Security hole"? Sounds like it's probably a hack then.
"The company says it has warned all of the consumers who may be affected and has set up a special web site to provide additional information."
[Comfyllama] The "special web site" must be hidden pretty well because I can't find it anywhere. There is nothing mentioned at all at http://www.kartenhaus.de/, http://www.ticketmaster.com, or http://www.ticketmastereurope.com
Commentary:
There is not much information available on this breach. Obviously, it would benefit Ticketmaster to keep this as quiet as possible as they do a large amount of business online. I am assuming that this breach was the result of a criminal exploitation of a vulnerability on the "one server", but unless further details are disclosed then this is speculation. I would love to hear more from anyone that has additional information, i.e. the "special web site" URL or notification correspondence. I don't think Germany's breach notification laws are as mature as those in the U.S.
Past Breaches:
Unknown
Date Reported:10/5/07
Organization:
Ticketmaster
Contractor/Consultant/Branch:
Kartenhaus
Victims:
Kartenhaus customers who purchased event tickets between October 24th, 2006 and September 30th, 2007 on the Kartenhaus.de web site.
Number Affected:
66,000
Types of Data:
Name, billing address and credit card number
Breach Description:
Confidential information relating to Kartenhaus.de customers was stolen by unidentified individuals. Ticketmaster is the parent company of Kartenhaus.
Reference URL:
English Version of the Report
Report Credit:
Heise Zeitschriften Verlag
Response:
From the online article cited above:
"The Hamburg ticket sales office Kartenhaus informed its customers on Thursday that still unidentified culprits had stolen credit card numbers and billing addresses"
"Some 66,000 customers who purchased tickets with a credit card from the Kartenhaus.de website between October 24, 2006 and September 30, 2007 were affected."
"The parent company, Ticketmaster, advised customers to "check your credit card bills as soon as possible to identify any irregularities or abuse"."
[Comfyllama] Beyond this advice, I would suggest that victims cancel credit cards and ask for a re-issue as a precaution. If a customer just checks for irregularities and finds one, then the fraud has already happened. If you cancel and get a re-issued card, then you are in a position of proactive protection.
"It is still not known how the thief or thieves gained access to the data. Apparently only one server was affected."
[Comfyllama] Maybe a hack, maybe an insider, maybe and employee mistake, maybe little green men with gorilla suits on. It would be nice to know a little more.
"Ticketmaster Europe's Vice President, Tommy Higgins, said that as soon as the attack was discovered, an internal team was assembled to track down the security hole and to inform all necessary personnel."
[Comfyllama] "Security hole"? Sounds like it's probably a hack then.
"The company says it has warned all of the consumers who may be affected and has set up a special web site to provide additional information."
[Comfyllama] The "special web site" must be hidden pretty well because I can't find it anywhere. There is nothing mentioned at all at http://www.kartenhaus.de/, http://www.ticketmaster.com, or http://www.ticketmastereurope.com
Commentary:
There is not much information available on this breach. Obviously, it would benefit Ticketmaster to keep this as quiet as possible as they do a large amount of business online. I am assuming that this breach was the result of a criminal exploitation of a vulnerability on the "one server", but unless further details are disclosed then this is speculation. I would love to hear more from anyone that has additional information, i.e. the "special web site" URL or notification correspondence. I don't think Germany's breach notification laws are as mature as those in the U.S.
Past Breaches:
Unknown
Posts Atom 1.0
Comments