In an announcement posted on its website, Inbenta Technologies has rejected Ticketmaster’s claim that its customer support product was at fault for a data breach that compromised the payment details of Ticketmaster’s customers.
According to Torras, the “attacker(s) located, modified, and used this script to extract the payment information of Ticketmaster customers processed between February and June 2018.”
Its FAQ pages provide more detail and states, “[the script] presents a point of vulnerability that affects the capacity for web forms to upload files. It appears that the attacker used this vulnerability.”
The customizations were confined to 3 separate files from its customer support product.
Torras also states Inbenta has conducted a thorough review and discovered no other clients have been affected by the incident.