1 million Coachella festival goers hacked

People's personal details were stolen, but their financial data is safe, says promoter

Promoters of the Coachella Music Festival have confirmed details of nearly one million attendees have been leaked from its database, but said payment information is not among the stolen data.

Reports of a massive data breach first appeared at the end of February, with Motherboard reporting the information of some festival goers could be bought on the dark web for just $300.

Advertisement - Article continues below

Coachella confirmed the stolen data includes registrants' firstnames and surnames, usernames, shipping addresses and email addresses, phone numbers and dates of birth.

This cache of information is enough for criminals to put together several types of scams and criminal activity. Reports have already started appearing of phishing attempts, while the full name, address and date of birth information could be put together to carry out identity theft.

However, as the data was stolen from the Coachella.com website and not the festival's ticketing site, users' credit card details were not stolen, said Coachella, meaning payment fraud isn't an immediate threat.

In a statement reported by IQ magazine, festival promoter Goldenvoice admitted the breach, saying it has "taken measures to block further unauthorised access and reported the matter to the appropriate authorities for further investigation".

Commenting on the lost data, Chris Boyd, malware intelligece analyst at Malwarebytes, said: "[The breach] opens the door to very personalized phishing attempts. Smooth criminals will no doubt fire off some fake refund/special festival deals at people who may not know about [it]."

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"The good news is, no payment information was compromised - but by the same token, cards can be canceled and replaced. It's a bit trickier to replace the information [that was] swiped ... to varying degrees of difficulty and/or time-wasting inconvenience.

"If you're off to Coachella this year, have a good time and remember to go directly to the source where all email missives are concerned," he added.

Picture credit: Bigstock

Featured Resources

Preparing for long-term remote working after COVID-19

Learn how to safely and securely enable your remote workforce

Download now

Cloud vs on-premise storage: What’s right for you?

Key considerations driving document storage decisions for businesses

Download now

Staying ahead of the game in the world of data

Create successful marketing campaigns by understanding your customers better

Download now

Transforming productivity

Solutions that facilitate work at full speed

Download now
Advertisement

Recommended

Visit/security/data-breaches/355962/fitness-depot-notifies-customers-of-data-breach
data breaches

Fitness Depot notifies customers of data breach

8 Jun 2020
Visit/security/data-breaches/355056/vpnmentors-web-mapping-project-finds-more-exposed-military-files-via
data breaches

Printing company exposes 343GB of sensitive military data

20 Mar 2020
Visit/security/ddos/28039/how-to-protect-against-a-ddos-attack
Security

How to protect against a DDoS attack

25 Oct 2019

Most Popular

Visit/business/business-operations/356395/nvidia-overtakes-intel-as-most-valuable-us-chipmaker
Business operations

Nvidia overtakes Intel as most valuable US chipmaker

9 Jul 2020
Visit/laptops/29190/how-to-find-ram-speed-size-and-type
Laptops

How to find RAM speed, size and type

24 Jun 2020
Visit/mobile/google-android/356373/over-2-dozen-additional-android-apps-found-stealing-user-data
Google Android

Over two dozen Android apps found stealing user data

7 Jul 2020