A number of Ticketfly sites are back online (including Alex’s Bar in Long Beach shown above), weeks after a hacking attack took down much of the Ticketfly platform and forced venue, promoter and festival clients on to clone sites while the company worked through the “cyber incident.”
Early reports indicated that it was the company’s reliance on WordPress that likely caused the hack, due to security vulnerabilities of the popular content management system. It’s unclear if ticketing officials were able to fix the vulnerability or determine where the hack took place, but several clients told Amplify they were happy to be back up online.
“Good news! Your original Ticketfly-powered website is now back online,” a June 13 email from Ticketfly to clients reads. “This means that your website will appear just as it had prior to going offline – and display current event info, synced from Backstage. This replaces the temporary website we created for you.”
Despite the sites being back online, clients can’t log in to WordPress to make content changes, although all ticketing info entered into Ticketfly’s backstage application will automatically appear on the site, the letter explains.
“The next step is for us to roll out a new, two-factor authentication requirement,” the letter reads, adding “you still have the ability to build and edit events in Backstage. Any new events you have built and published will be current, and will appear on your website with links to purchase tickets as expected.”
The May 31 “cyber incident” that took down Ticketfly and temporarily prevented clients from selling tickets, scanning in patrons at the door and operating their email campaigns and websites has prompted questions of whether Ticketfly became too big to fail as it quickly expanded and took on larger segments of the independent music infrastructure. Eventbrite CEO Julie Hartz and Ticketfly’s Head of Music Andrew Dreskin have yet to publicly address the crisis, which was considered one of the worst data breaches in ticketing history.