International ticketing services firm See Tickets has been hit by a data breach
impacting customers' credit card details that commenced more than two and a half years ago, BleepingComputer
Threat actors behind the intrusion have deployed skimmers on See Tickets' order checkout pages to exfiltrate inputted credit card information. Such skimmers have only been removed in January, even though the attack was identified in April 2021.
Moreover, further investigation revealed that the infection began in June 2019, with hackers potentially stealing data, which includes names, addresses, and ZIP codes, as well as payment card numbers, CVV numbers, and card expiration dates.
However, See Tickets emphasized that no Social Security numbers, bank account data, and state identification numbers have been compromised as such information has not been stored in its systems. No details regarding the number of affected See Tickets customers have been provided. See Tickets has also yet to confirm the sites impacted by the incident.