Madison Square Garden hit by data breach

Madison Square Garden hit by data breach

The Madison Square Garden Company has informed customers of a data security breach that may have affected payment card users at five of its properties, including its namesake arena in New York City.

The company wrote that it began the investigation after it "was notified that payment card issuing banks identified a transaction pattern indicating a potential data security concern".

Madison Square Garden Co has learned that the data breach affected its systems from November 9, 2015 through October 24, 2016. At the end of October the company's investigation revealed external unauthorized access and implemented enhanced security measures.

Madison Square Garden Company (MSG) reported payment card information was stolen from potentially hundreds of thousands of customers who attended shows or sporting events at the organization's five major venues during the a year ago. The information compromised includes credit card numbers, cardholder names and expiration dates - everything needed to create a replica card. Although the company hasn't stated how many customers were affected, it has suggested that anyone who meets the criteria above should review their account statements.

MSG notes that not all cards used during this time frame were affected.

MSG is providing information on its website, www.themadisonsquaregardencompany.com/customerupdate, regarding steps customers can take to guard against misuse of payment card information. The Garden is also working with law enforcement on the matter.

MSG said it "stopped this incident" and assured customers it is safe to use their cards again at its venues.

The Madison Square Garden Company just disclosed that someone had access to its payment processing system for nearly a year.