ThunderTix recently identified a phishing campaign targeting some platform users.
Attackers created a fraudulent website mimicking the ThunderTix login page and obtained credentials from a small number of users who entered their passwords on that site.
Using those credentials, attackers accessed certain accounts and downloaded customer contact lists associated with those accounts. No credit card data is stored on ThunderTix, but we are alerting customers to be aware of targeted phishing attempts or similar activity.
The information involved may have included names, email addresses, phone numbers, and mailing addresses.
No credit card or payment card information was accessed.
We immediately forced password resets across the platform, secured affected accounts, and reversed unauthorized payment gateway changes.
We are continuing to monitor the system and implement additional protections.