ShellCodeX Breach Report
Central Tickets Data Breach
centraltickets.co.uk
Verified breach
Passwords exposed
Accounts exposed
722,860
Breach date
01 Jul 2024
Added to tracker
30 Sep 2024
Data classes
7
What happened
In September 2024, data from the ticketing service Central Tickets was publicly posted to a hacking forum. The data suggests the breach occurred several months earlier and exposed 723k unique email addresses alongside names, phone numbers, IP addresses, purchases and passwords stored as unsalted SHA-1 hashes.
Exposed data
Device information
Email addresses
IP addresses
Names
Passwords
Phone numbers
Purchases
Recommended actions
- Change your Central Tickets password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing Central Tickets โ attackers weaponise breach data quickly.
- Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP