Back
Technology

Melbourne International Film Festival Data Breach Affects 26,700 Customers

Generated on: Last updated: 1 sources
View source

Melbourne International Film Festival Data Breach: Ticketing Platform Compromised

A third-party ticketing platform used by the Melbourne International Film Festival has been breached, exposing the personal details of tens of thousands of customers.

The Melbourne International Film Festival (MIFF) has confirmed a data breach affecting its third-party ticketing provider, Ferve. The incident, which came to light on May 29, 2024, may have compromised the personal information of approximately 26,700 customers—representing roughly 10% of the festival's database.

What Information Was Accessed?

The breach exposed a range of personal data, including:

  • Names
  • Email addresses
  • Phone numbers
  • Residential addresses

Crucially, MIFF has confirmed that no complete credit card information or account passwords were compromised. The festival stated that the affected data does not include financial details, though customers are advised to remain vigilant.

Suspicious Messages Sent to Customers

The breach took an unusual turn when unauthorized messages were sent to some affected customers. Reports detail messages containing sad face emojis, as well as an email referencing pop star Miley Cyrus. The festival became aware of the issue on May 29, and some customers reported receiving these strange communications on May 30.

Response and Investigation

MIFF acted swiftly upon discovery:

  • Affected accounts were immediately suspended.
  • Additional security measures have been implemented.
  • The Australian Cyber Security Centre has been notified.

The investigation into the breach is ongoing. MIFF has advised all affected customers to exercise caution regarding any unexpected communications and to be wary of potential phishing attempts or suspicious emails.

About the Affected Platform

Ferve is an Australian-owned ticketing platform used by several major cultural events. In addition to MIFF, its clients include the Sydney Film Festival and the Melbourne Writers Festival. This breach raises questions about the security posture of third-party vendors used by major public events.

Event Context

The Melbourne International Film Festival is an annual event scheduled to run from August 6 to 23, 2024. The breach occurs just weeks before the festival's opening, adding pressure to ensure the security of remaining customer data.

Affected customers are urged to monitor their accounts for suspicious activity and to report any unusual communications to MIFF or the relevant authorities.