Ticketek, a leading ticketing service company, recently experienced a cyber incident that exposed customer information, including names, dates of birth, and email addresses. The breach occurred through a third-party cloud platform. Although passwords and financial details remain secure, the incident highlights vulnerabilities in data protection within third-party services.
The cyber incident occurred due to a vulnerability in a third-party cloud platform used by Ticketek. While Ticketek has not disclosed the specific vulnerability exploited, it is suspected that inadequate security measures at the third-party provider, may have contributed to the breach. This aligns with recent trends where third-party services have become frequent targets for cyber-attacks due to their often weaker security controls compared to the primary service providers.