Eventbrite OAuth2 Token
Service Name: Eventbrite
Service Description: Eventbrite is an event management and ticketing platform that allows users to create, promote, and sell tickets to events and experiences of all sizes.
Service Address: https://www.eventbrite.com/
Validation Type: API Auth
IP Allow list: Does not exist
Secret Access Scope: Grants access to Eventbrite API endpoints for managing events, orders, attendees, and other Eventbrite resources based on the permissions granted during OAuth authorization.
Secret Revokement URL: https://www.eventbrite.com/account-settings/apps
Secret Example: PERSONAL-TOKEN-ABCDEFGHIJKLMNOPQRSTUVWXYZ123456789
Suspicious Activity Investigation Instructions:
- Review the Eventbrite account for unauthorized events or modifications to existing events.
- Check for unexpected changes to event settings, ticket types, or pricing.
- Monitor for unauthorized access to attendee data or contact information.
- Review API access logs for unusual patterns or access from unfamiliar locations.
- Check for unexpected integrations or third-party applications connected to your Eventbrite account.
Mitigation Instructions:
- Log in to your Eventbrite account and navigate to Account Settings > Apps.
- Locate and revoke the compromised OAuth token.
- Generate a new token if needed for legitimate applications.
- Review and update your Eventbrite account password.
- Enable two-factor authentication on your Eventbrite account if available.
- Review all connected applications and remove any that are no longer needed or recognized.
- Monitor your account for any additional suspicious activity for several days after the incident.