Coachella Valley Music and Arts Festival has announced that information about users registered on its website (a process required to purchase tickets for the festival) has been digitally compromised. The below statement, emailed to account holders, was forwarded to Pitchfork. A representative for AEG, the company behind Coachella, confirmed that the statement is official. “We recently discovered that unauthorized third parties illegally gained access to the usernames, first and last names, shipping addresses, email addresses, phone numbers and dates of birth individuals provided to Coachella,” an email to account holders reads. “We have confirmed that no user passwords were stolen.” The statement follows a recent Motherboard report claiming that hacked Coachella account data was being sold on the dark web.

According to the statement, an investigation found that “no financial information was accessed.” The statement also says the festival has “taken measures to block further unauthorized access” and has reported the incident to the appropriate authorities. The statement continues: