Global ticketing giant See Tickets has reported a second data breach in the past 12 months, once again compromising customers’ credit card information. The company, owned by Vivendi Ticketing, confirmed the latest breach after noticing unusual activity on its e-commerce websites in May.
An investigation revealed that hackers had injected malicious code into several e-commerce checkout pages, suggesting the use of credit card skimming malware to steal payment card details. The breach exposed names, addresses, debit/credit card numbers, security codes, passwords, and PIN numbers for over 323,000 See Tickets customers, occurring between February 28 and July 2.
See Tickets completed its investigation by July 21 but faced criticism for taking more than six weeks to notify affected individuals. This incident marks the second known breach for the company in recent times.
In October 2022, See Tickets disclosed a breach where hackers accessed customers’ payment card details due to compromised event checkouts for over two years. The skimming began in June 2019, but the malicious code went undetected until April 2021, and it was not entirely removed from the See Tickets website until January 2022. The full extent of the impact on affected individuals remains unknown.