Audio By Carbonatix
Ticketmaster UK has been fined £1.25m for failing to keep its customers' personal data secure.
The fine was issued by the Information Commissioner's Office (ICO) following a cyber-attack on the Ticketmaster website in 2018.
The ICO said personal information and payment details had potentially been stolen from more than nine million customers in Europe.
Ticketmaster said it would appeal against the ruling.
An investigation found a vulnerability in a third-party chatbot built by Inbenta Technologies, which Ticketmaster had installed on its online payments page.
Ticketmaster has been fined £1.25million over a 2018 data breach - but the company says it will appeal https://t.co/JZrSGm6T5T
— Chris Fox (@thisisFoxx) November 13, 2020
A cyber-attacker was able to use the chatbot to access customer payment details.
Following the breach, 60,000 Barclays bank customers were victims of fraud. Online bank Monzo had to replace 6,000 payment cards due to fraud.
The ICO said Monzo, the Commonwealth Bank of Australia, Barclaycard, Mastercard and American Express had all warned Ticketmaster of suspected fraud.
But Ticketmaster took nine weeks to start monitoring activity on its payments page, according to the ICO.
"Ticketmaster should have done more to reduce the risk of a cyber-attack. Its failure to do so meant that millions of people in the UK and Europe were exposed to potential fraud," said James Dipple-Johnstone, deputy commissioner at the ICO.
In a statement, Ticketmaster said: "Ticketmaster takes fans' data privacy and trust very seriously.
"Since Inbenta Technologies was breached in 2018, we have offered our full cooperation to the ICO. We plan to appeal [against] today's announcement."
Law firm Keller Lenkner said it was pursuing legal action against Ticketmaster on behalf of thousands of fraud victims.
"While several banks tried to alert Ticketmaster of potential fraud, it took an unacceptable nine weeks for action to be taken, exposing an estimated 1.5 million UK customers," said Kingsley Hayes, the firm's head of cyber-crime.
Latest Stories
-
Kenya Airways posts $138m pre-tax loss in 2025
26 minutes -
Social media bans and digital curfews to be trialled on UK teenagers
36 minutes -
Premier League great Salah will leave lifetime of memories
45 minutes -
Libya’s El Feel oilfield in shutdown since Thursday, engineers say
57 minutes -
Oil traders bet millions minutes before Trump’s Iran talks post
2 hours -
Fortnite-maker Epic Games lays off 1,000 more staff
3 hours -
Philippines declares energy emergency over Iran conflict
3 hours -
China dials back on fuel price hikes to ‘reduce burden’ on drivers
3 hours -
Elon Musk’s Starlink blocked from operating in Namibia
3 hours -
Minority in Parliament demands transparency in Big Push contracts
3 hours -
Minority decries government railway sector neglect
3 hours -
Middle East shock gives Dangote Refinery leverage as cheap imports dry up
4 hours -
Kenya Airways says Iran war has led to demand hike for its flights
4 hours -
Benin presidential candidate vows new police forces to fight jihadists
4 hours -
Kwame Dadzie: Did Stonebwoy’s ‘Jejereje’ really give NDC “significant” electoral impact?
4 hours