Ticketmaster has admitted that 40,000 customers’ personal information and credit card details have been compromised in a data breach on Saturday.

The company said in a statement that its systems had been hit by “malicious software” through a third-party supplier to the site. Ticketmaster said that the affected accounts – five per cent of the firm’s customer base – have been contacted and advised to change their password.

A statement from Ticketmaster read: “On Saturday, June 23, 2018, Ticketmaster UK identified malicious software on a customer support product hosted by Inbenta Technologies, an external third-party supplier to Ticketmaster. As soon as we discovered the malicious software, we disabled the Inbenta product across all Ticketmaster websites.

“As a result of Inbenta’s product running on the Ticketmaster UK website, some of our customers’ personal or payment information may have been accessed by an unknown third-party.”

The company said that anyone who had purchased or attempted to purchase tickets from the site between February and June 23 of this year could have been affected.

In a blog post, digital challenger bank Monzo said it spotted signs of the breach in early April and proactively replaced the cards of all Monzo customers who could have been affected.

It said: “After investigating, our Financial Crime and Security team noticed a pattern: 70 per cent of the customers affected had used their cards with the same online merchant between December of last year and April this year. That merchant was Ticketmaster. This seemed unusual, as overall only 0.8 per cent of all our customers had used Ticketmaster.”

Monzo said it warned the ticket sales company of the obvious patterns of fraud, but Ticketmaster came back and said they had found no evidence of a breach following an internal investigation, and no other banks were reporting similar patterns.

Share Story: