Adele ticket sale rush reveals potential security breach for Songkick -TEISS® : Cracking Cyber Security

IoT / Adele ticket sale rush reveals potential security breach for Songkick

Adele ticket sale rush reveals potential security breach for Songkick

The website facilitating ticket sales for best-selling musician Adele has suffered a security breach scare after fans reported seeing other people’s details when trying to buy tickets.

Adele Thinkstock

Fans of Adele attempting to purchase tickets for her 2016 tour, which became available to members of official fan site Adele.com this morning, experienced some difficulties besides the queues that many took to Twitter to complain about.

Customers reported they were presented with other people’s shopping baskets at the checkout, with someone else’s payment details and billing address.

One Birmingham-based fan, Kiran Farmah, said that when attempting to purchase her tickets, she was shown tickets for Glasgow shows in her basked.

“I got through to buying tickets but it came up with someone else’s screen with their card details and home address for SSE,” she tweeted to the BBC.

Several other customers have since reported similar experiences using Twitter.

“Same thing happened to me,” said Michael Crow. “Got through, 4 tickets Glasgow, came up with 2 tickets for London and someone else’s name/address.”

Songkick, the music and technology firm responsible for this morning’s ticket sales via Adele.com, said that the experience was “due to extreme load experienced this morning”.

“Some of our customers were incorrectly able to preview limited account information belonging to other customers,” the firm said.

“There’s no evidence that this included credit card numbers or passwords. We’re looking further into the matter to ensure it doesn’t happen again.”

Security expert Graham Cluley told the BBC that the incident “certainly sounded” like a security breach and that this type of incident “should be impossible, even if the website is very busy”.

He said it was “unclear” whether credit card numbers had been exposed, but advised anyone who attempted to buy tickets in this morning’s advance sale to keep a “close eye” on their bank accounts.


TEISS banner

Comments

Most Popular

Get the latest cyber news in your inbox

Join our community of cyber professionals today!