On June 28, 2024, the Théâtre de la Cité Internationale in Paris reported a data breach involving its ticketing service provider, Forum Sirius. The theater informed its members that this IT security incident involved the theft of access credentials from a production server, leading to the compromise of personal data. This includes users’ surnames, first names, email addresses, phone numbers, and postal addresses. Additionally, passwords for customer accounts on the ticketing platform were also exposed.
The breach was detected when a user notified the theater, which then received confirmation from Forum Sirius about the malicious attack. The theater responded promptly by resetting all affected passwords and is currently implementing necessary technical and legal measures to address the situation. Although the incident has been labeled as closed, the theater continues to monitor and improve its security protocols.
Forum Sirius, the company responsible for the ticketing software, supports numerous cultural institutions including theaters, dance centers, and festivals. With a client base of around 400 theaters, the breach affects a broad spectrum of cultural organizations that rely on this software for managing ticket sales and customer data.
Despite the severity of the incident, the theater reassures its patrons that no financial data was compromised and is taking steps to ensure such breaches are prevented in the future. The Théâtre de la Cité Internationale remains committed to safeguarding its patrons’ information and enhancing its cybersecurity measures.
Reference:
