Article 3RKT9 How to protect yourself from megabreaches like the one that hit Ticketfly

How to protect yourself from megabreaches like the one that hit Ticketfly

by
Dan Goodin
from Ars Technica - All content on (#3RKT9)
LisaBrewster_Flickr_HackerDefcon15-800x5

Enlarge (credit: Lisa Brewster / Flickr)

A recent hack of ticket-distribution website Ticketfly exposed more than 26 million email addresses, along with home addresses, phone numbers, and first and last names, according to the Have I Been Pwned breach notification service. The intrusion provides the latest reminder that users should provide incorrect or incomplete information to online services whenever possible. More about that later.

The breach was first reported last week by Motherboard, which said the breach was carried out by a hacker who had first offered to provide Ticketfly officials with details of the underlying vulnerability in exchange for one bitcoin, worth roughly $7,500. When the officials didn't respond, the hacker defaced the site and published the user data online, Motherboard said.

Have I Been Pwned said over the weekend that the data included 26.1 million unique email addresses, names, physical addresses, and phone numbers. It didn't include password or credit card data. In a blog post, Ticketfly officials said they were in the process of bringing the ticket service back online. Part of that effort involves working with forensic and security experts to investigate the hack and to better secure the new site against similar intrusions.

Read 5 remaining paragraphs | Comments

index?i=4poe-JXlPCM:dHYJ7sOD4ac:V_sGLiPB index?i=4poe-JXlPCM:dHYJ7sOD4ac:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments