Ticketmaster has informed fans who report their concert tickets vanishing from their accounts—costing them a significant amount of money—that they have been hacked.

“What we’re witnessing is scammers infiltrating fans’ email accounts,” a representative from Ticketmaster mentioned to YSL News on Tuesday.

Numerous ticket holders have shared their experiences, including Blaine Heck, who revealed to MarketWatch and the Daily Mail that she had a pair of $3,500 tickets to see Taylor Swift taken from her account. Likewise, Savannah Van Skyhawk from Indiana lost her tickets for a concert featuring the singer, despite reaching out to Ticketmaster multiple times, according to WTHR.

“We paid roughly $300 per ticket, but I’ve seen them reselling for about four or five thousand each. So if we lost those, buying new tickets was not an option,” Van Skyhawk told the station. “Ticketmaster just kept insisting they’d call me in three to five days. I’d wait, and then they wouldn’t call. I’d end up calling them again, and they’d still say three to five days. It became a cycle, and no one ever got in touch with me.”

New Scams Emerging

In their statement to YSL News, Ticketmaster representatives advised ticket purchasers to “take precautions” by “creating a strong, unique password for all accounts—especially personal emails, where security breaches frequently begin.”

“Overall, our digital ticketing advancements have substantially decreased fraud compared to the time of paper tickets and duplicate PDFs. Having a digital record is also why we can track down and return tickets to fans,” the spokesperson added. “Scammers are always searching for new tricks across all industries, and tickets remain a prime target due to their high value. Ticketmaster continually invests in enhanced security measures to protect our fans.”

The spokesperson further clarified that Ticketmaster user passwords were not compromised during the data incident that occurred earlier this year.

Details on Ticketmaster’s Data Security Breach

According to information on Ticketmaster’s site, the company “identified unauthorized actions on a restricted cloud database managed by a third-party data service provider.”

The compromised database contained limited personal data from some customers in North America (including the U.S., Canada, and Mexico) who purchased tickets, as stated by Ticketmaster. This might have included users’ email addresses, phone numbers, encrypted credit card details, and additional personal data.

Despite the breach, Ticketmaster reassured that users’ accounts “stay secure” and “customers can continue to engage with Ticketmaster as they normally would without concerns.”

“Our extensive investigation, in collaboration with top cybersecurity experts and appropriate authorities, has confirmed that no further unauthorized actions have taken place,” the company stated.