Cyber Incident Victim: See Tickets

The See Tickets data breach began with a skimming attack on June 25, 2019, when malicious JavaScript code was injected into the company's online checkout pages. This code captured payment card details entered by customers purchasing event tickets, operating undetected for over two and a half years. The compromised information included full names, physical addresses, ZIP codes, payment card numbers, expiration dates, and CVV security codes. See Tickets confirmed that Social Security Numbers, state identification numbers, and bank account information remained secure as these data types were not stored in their systems. The company discovered the breach in April 2021 through an internal investigation initiated with forensic specialists, though the malicious skimmer remained active on their website until its complete removal on January 8, 2022.

Following the skimmer's removal, See Tickets collaborated with payment networks including Visa, MasterCard, American Express, and Discover throughout 2022 to assess the breach's scope. On September 12, 2022, the company concluded that unauthorized parties had potentially accessed customer payment data during the entire 2.5-year infection period. Impacted customers were warned about risks of unauthorized credit card transactions, identity theft, and phishing attempts leveraging the stolen information. The breach notification highlighted criminals' typical use of such data for fraudulent purchases and money laundering through intermediary networks. See Tickets did not provide identity protection services to affected individuals and did not disclose the number of compromised accounts or clarify whether regional domains for U.S., Canadian, and European customers were similarly affected. The company filed a breach disclosure with the Montana Attorney General's office but had not responded to media inquiries regarding additional details by the time of reporting.