A threat actor claims to be selling the database and access to the database of Central Tickets, a company known for providing a free seat-filling service since 2017. Central Tickets connects productions with new audiences, including underserved groups, in a socially and climate-responsible manner.
The alleged database contains 800,000 customer records, which include sensitive information such as first names, last names, emails, passwords, phone numbers, and more. This extensive collection of personal data poses significant risks if it falls into the wrong hands.
Central Tickets has been active since 2017, focusing on connecting productions with new audiences in a socially and environmentally responsible way. The company emphasizes its commitment to inclusivity and sustainability in its operations.
The sample data provided by the threat actor includes columns such as id, uncode, referral_code, fname, lname, email, password, recommended, mobilenumber, attend, status, code, type_event, created_at, agree, blocktime, rulesrevisionform, rulesrevisionformdatetime, ipaddress, rtype, preferences, livein, ac_id, updated_at, is_delete, and vendor.
The price for this alleged database is set at $3,000. The sale of such a comprehensive dataset raises concerns about privacy and data security for the affected customers.