IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

1 million Coachella festival goers hacked

People's personal details were stolen, but their financial data is safe, says promoter

Concert crowd

Promoters of the Coachella Music Festival have confirmed details of nearly one million attendees have been leaked from its database, but said payment information is not among the stolen data.

Reports of a massive data breach first appeared at the end of February, with Motherboard reporting the information of some festival goers could be bought on the dark web for just $300.

Coachella confirmed the stolen data includes registrants' firstnames and surnames, usernames, shipping addresses and email addresses, phone numbers and dates of birth.

This cache of information is enough for criminals to put together several types of scams and criminal activity. Reports have already started appearing of phishing attempts, while the full name, address and date of birth information could be put together to carry out identity theft.

However, as the data was stolen from the Coachella.com website and not the festival's ticketing site, users' credit card details were not stolen, said Coachella, meaning payment fraud isn't an immediate threat.

In a statement reported by IQ magazine, festival promoter Goldenvoice admitted the breach, saying it has "taken measures to block further unauthorised access and reported the matter to the appropriate authorities for further investigation".

Commenting on the lost data, Chris Boyd, malware intelligece analyst at Malwarebytes, said: "[The breach] opens the door to very personalized phishing attempts. Smooth criminals will no doubt fire off some fake refund/special festival deals at people who may not know about [it]."

"The good news is, no payment information was compromised - but by the same token, cards can be canceled and replaced. It's a bit trickier to replace the information [that was] swiped ... to varying degrees of difficulty and/or time-wasting inconvenience.

"If you're off to Coachella this year, have a good time and remember to go directly to the source where all email missives are concerned," he added.

Picture credit: Bigstock

Featured Resources

The state of Salesforce: Future of business

Three articles that look forward into the changing state of Salesforce and the future of business

Free Download

The mighty struggle to migrate SAP to the cloud may be over

A simplified and unified approach to delivering Enterprise Transformation in the cloud

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

The Total Economic Impact™ Of IBM FlashSystem

Cost savings and business benefits enabled by FlashSystem

Free Download

Recommended

Ten ways to protect your company from the next big data breach
data breaches

Ten ways to protect your company from the next big data breach

18 Feb 2022
Gumtree site code made personal data of users and sellers publicly accessible
data protection

Gumtree site code made personal data of users and sellers publicly accessible

16 Dec 2021
Education and government most at risk from email threats
phishing

Education and government most at risk from email threats

26 Nov 2021
Pizza chain exposed 100,000 employees' Social Security numbers
data breaches

Pizza chain exposed 100,000 employees' Social Security numbers

19 Nov 2021

Most Popular

Cyber attack on software supplier causes "major outage" across the NHS
cyber attacks

Cyber attack on software supplier causes "major outage" across the NHS

8 Aug 2022
Why convenience is the biggest threat to your security
Sponsored

Why convenience is the biggest threat to your security

8 Aug 2022
How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

29 Jul 2022