Ransomware Attack Disrupts Major Ticketing Platform, Impacting Museums and Theme Parks Worldwide A recent ransomware attack on a key online ticketing provider has caused widespread disruptions for museums, theme parks, and cultural attractions, exposing vulnerabilities in the travel and leisure industry’s reliance on centralized digital platforms. The attack encrypted core systems managing reservations, timed entry, and access control, leading to outages and error messages for visitors attempting to book tickets. Some venues temporarily reverted to in-person sales or reduced capacity while backups were restored. The incident follows a pattern of ransomware targeting shared ticketing providers, which serve hundreds of clients across multiple countries, amplifying the fallout. Beyond ticket sales, affected platforms also support membership systems, online collections, and point-of-sale operations, meaning disruptions extend to gift shops, cafes, and ancillary revenue streams. While payment card data appears unaffected, customer details including names, email addresses, and purchase histories may have been exposed, raising privacy concerns. High-profile attractions dependent on advance reservations have been hit hardest, with some capping daily visitor numbers or issuing advisories about booking failures. Theme parks have also faced disruptions, with attacks knocking out park management systems, hotel reservations, and premium services, forcing manual workarounds and longer queues. Regulators in Europe and beyond are investigating whether institutions and vendors met security and disclosure obligations. Meanwhile, the incident has prompted discussions about cyber resilience in the travel sector, as operators weigh the risks of relying on shared infrastructure. Some are diversifying providers or investing in contingency plans, while insurers emphasize the need for stronger vendor security measures. For travelers, the attack underscores the importance of monitoring official communications before visits, as outages may affect time-sensitive bookings. While travel insurance rarely covers such disruptions, policyholders are advised to review terms for potential compensation. The episode highlights the broader risks of centralized ticketing systems and the need for improved security standards in the industry.