The Madison Square Garden Company has informed customers of a data security breach that may have affected payment card users at five of its properties, including its namesake arena in New York City. The company said on Tuesday that after issuing banks informed them last month of potential abnormalities in transactions, an investigation found signs of "external unauthorized access" to the payment processing system used at merchandise and food locations at MSG, The Theater at Madison Square Garden, Radio City Music Hall, Beacon Theatre and the Chicago Theatre.
According to MSG, analysts found the installation of a program that "looked for payment card data as that data was being routed through the system for authorization." The data contained in a payment card’s magnetic strip includes credit card numbers, cardholder names, expiration dates and internal verification codes. The company said that visitors who used their cards at the listed venues between Nov. 9, 2015 and Oct. 24 of this year may have been affected, however, it insists not all cards used during that timeframe were affected and that the incident did not involve MSG websites, box offices or Ticketmaster.