MSG Reveals Data Hack

Madison Square Garden Co. notified customers that five of its locations may have been affected by a data breach over the past year.  

Hackers appear to have tapped into its payment system to glean information from cards used between Nov. 9, 2015 and Oct. 24 at its merchandise, food and beverage locations at  and .

The information included credit card numbers, cardholder names and expiration dates. MSG posted the notification Nov. 22 on its website and encouraged customers to review their accounts for unauthorized activity and to report it immediately.

According to the statement, MSG was notified that payment card-issuing banks “identified a transaction pattern indicating a potential data security concern” and immediately brought in computer security firms to investigate.

In the last week of October, the investigation found signs of “external unauthorized access,” stopped it, and increased its security measures.

The company said that information contained in the magnetic strips of payment cards swiped at its venues may have been compromised, but cards used on MSG’s website, box offices or Ticketmaster were not affected.

The company did not disclose how many accounts may have been affected, nor did a spokeswoman respond to Pollstar’s request for comment.

“MSG values the relationship we have with our customers and understands the importance of protecting personal information,” the company said in its statement. “We regret any inconvenience this has caused.”