Cyber Incident Victim: Viva Ticket

In March 2026, Viva Ticket, a ticketing platform used by museums, theme parks, and live event organizers, suffered a ransomware attack. The intrusion affected approximately 3,500 partner organizations, including the Louvre museum. According to the reporting, the ransomware may have exposed customer identification and billing data stored on the platform. Bank account details were specifically noted as not being part of the potentially compromised information. At the time of the initial disclosure, investigators had found no evidence that the attackers had extracted data or that any fraudulent use had occurred. The attack prompted Viva Ticket to activate its incident response procedures.

Viva Ticket has since taken action to secure its systems. The company continues to provide ticketing services to high‑profile venues and events worldwide, including Disney World, Ferrari World, and concerts by major artists. No further specifics about the ransomware variant, attack vector, or detailed containment timeline were disclosed in the source material. The potential impact was limited to identification and billing information, with bank details explicitly stated as unaffected. As of the report, there remained no evidence of data extraction or fraudulent activity linked to the incident. Viva Ticket maintained communication with its partners regarding the status of the platform and the steps taken to restore security.