ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

Fanpass Data Breach

fanpass.co.uk
Limited exposure
Verified breach Passwords exposed
Accounts exposed 112,251
Breach date 30 Apr 2022
Added to tracker 24 May 2022
Data classes 9

What happened

In April 2022, the UK based website for buying and selling soccer tickets Fanpass suffered a data breach which exposed 112k customer records. Impacted data includes names, phone numbers, physical addresses, purchase histories and salted password hashes.

Exposed data

Email addresses Genders Names Partial dates of birth Passwords Phone numbers Physical addresses Purchases Social media profiles

Recommended actions

  • Change your Fanpass password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Fanpass — attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP