ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Ticketcounter Data Breach

ticketcounter.nl
Significant exposure
Verified breach
Accounts exposed 1,921,722
Breach date 22 Feb 2021
Added to tracker 01 Mar 2021
Data classes 9

What happened

In August 2020, the Dutch ticketing service Ticketcounter inadvertently published a database backup to a publicly accessible location where it was then found and downloaded in February 2021. The data contained 1.9M unique email addresses which were offered for sale on a hacking forum and in some cases included names, physical and IP addresses, genders, dates of birth, payment histories and bank account numbers. Ticketcounter was later held to ransom with the threat of the breached being released publicly.

Exposed data

Bank account numbers Dates of birth Email addresses Genders IP addresses Names Payment histories Phone numbers Physical addresses

Recommended actions

  • Watch for targeted phishing emails referencing Ticketcounter โ€” attackers weaponise breach data quickly.
  • Monitor your bank and card statements closely and consider requesting a card replacement.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP