A Dutch e-Ticketing platform has suffered a data breach after a user database containing 1.9 million unique email addresses was stolen from an unsecured staging server. Ticketcounter CEO Sjoerd Bakker has told BleepingComputer that they copied a database to a Microsoft Azure server to test an ‘anonymization process’ that replaces personal data with fake data. The data exposed can include full names, email addresses, phone numbers, IP addresses, and hashed passwords. The threat actor released the database for free today on a hacker forum.
Source: https://www.bleepingcomputer.com/news/security/european-e-ticketing-platform-ticketcounter-extorted-in-data-breach/