• Replies 7 replies
  • Subscribers 344 subscribers
  • Views 639 views
  • Users 0 members are here
Related

Met Opera Cyberattack

Wyndham Manning
$organization

Anyone know what's going on with the Met Opera? Sounds like a cyberattack has taken down Tessitura for them for more than 24 hours already. Any cause for concern or new vulnerabilities exposed for the rest of us?

Parents
  • $organization

    At CSO, we have to provide periodic updates to our Executive Committee regarding our cyber security risk and preparedness.  In advance of that next update, I've already been asked to provide any information available regarding the underlying nature of the cyber security incident experienced by the Met recently.

    Understanding that details of these types of events are often guarded, is anyone aware of any additional information regarding the nature of this incident other than the impact that was publicly reported?

Reply
  • $organization

    At CSO, we have to provide periodic updates to our Executive Committee regarding our cyber security risk and preparedness.  In advance of that next update, I've already been asked to provide any information available regarding the underlying nature of the cyber security incident experienced by the Met recently.

    Understanding that details of these types of events are often guarded, is anyone aware of any additional information regarding the nature of this incident other than the impact that was publicly reported?

Children
  • $organization in reply to Dan Spees

    Hi Dan

    Thanks for reaching out. While it wouldn't be appropriate for me to comment on any individual member's security operations, I can confirm that the impacted systems were not connected to Tessitura's hosting environment. In addition, Tessitura's in-hous security team and I assessed that this incident did not introduce any new security risks for our members.

    Based on what has been publicly reported, the attack on Met Opera impacted all internal systems on their network, including payroll, email, and Tessitura. We initiated our cybersecurity incident response plan in response to the issue. In the weeks following the incident we closely monitored the hosted environment and found no suspicious behavior.

    You may be aware that the Met worked with another Tessitura member organization to sell tickets to upcoming performances, demonstrating both organizations’ confidence in the security of the Tessitura software.

    Tessitura’s security team is made up of in-house specialists complemented by a world-class managed security service provider. We protect our systems and data using layers of technical and process controls and validate those controls using a strict compliance regime. When vulnerabilities are discovered, we communicate their impact and remedy as soon as we can. We post security updates on our website whenever there is information we need to share with you. You can find additional information about Tessitura’s security policies here: https://www.tessituranetwork.com/en/Support/Security 

    If you have any questions or concerns, please contact me directly or submit a help ticket.

    Best regards

    Nic Boling

    Vice President of Information Technology & Security, Tessitura