The ticket-selling giant told users in an email Monday that an “unauthorized third party” accessed customer data from a cloud database hosted by another company between April 2 and May 18. Ticketmaster said in a separate statement that the data included emails, phone numbers and “encrypted credit card information” for some customers who bought tickets in North America. (CBC, The Logic) 

Talking point: The company previously told the SEC that it had detected “unauthorized activity” on May 20 and that a “criminal threat actor” had claimed to be offering user data for sale on the dark web on May 27. At the time, a hacking group called ShinyHunters claimed it stole 1.3 terabytes of data belonging to 560 million customers, and asked for US$500,000 in payment. The group told Wired that it accessed Ticketmaster’s account on cloud service Snowflake by first breaching a contractor, details that reportedly match some of the stolen files. Ticketmaster said it’s working with law enforcement and plans to offer affected users a 12-month identity monitoring service.