[BreachExchange] Goldenvoice Confirms Hack of Coachella Website

Audrey McNeil audrey at riskbasedsecurity.com
Wed Mar 1 20:19:39 EST 2017


https://www.yahoo.com/music/goldenvoice-confirms-hack-
coachella-website-141848910.html

Goldenvoice has warned Coachella.com account holders of a potentially large
data breach. In a message sent to users on Tuesday, the concert promoter
said it recently discovered that hackers gained access to personal
information, including full names, email addresses, phone numbers and birth
dates provided to Coachella by festival-goers using the website.

Organizers stressed that no user passwords were stolen in the security
breach, and that all "unauthorized third parties" have been blocked from
further access. The hack was reported to authorities and is currently under
investigation, a rep for Goldenvoice parent company AEG confirmed to
Billboard.

The promoter then advised Coachella.com account holders to "be aware that
you may be targeted by phishing emails sent from people impersonating
Coachella personnel. Please remember that Coachella will never solicit
personal information or account information from you via email. Please
exercise caution if you receive any emails or phone calls that ask for such
information, or direct you to web sites where you are asked for personal or
financial information."

Coachella.com accounts are separate from the ticket purchasing process, and
are used by fans primarily to customize their lineups, activate wristbands
and to post on the festival message board. The site to register new
accounts remains active, but current users are advised to change their
passwords stat. Ticket purchasing accounts, which would host credit card
numbers and other sensitive information, were not impacted by the hack.

This splash of bad news for Coachella preceded the announcement late
Tuesday that Lady Gaga has replaced Beyonce as one of the festival's main
headliners. The booking, which Gaga confirmed on Twitter, was first
reported by Billboard.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riskbasedsecurity.com/pipermail/breachexchange/attachments/20170301/6db5a938/attachment.html>


More information about the BreachExchange mailing list