A hacker going by the name of 2019 has published what they claim is the personal data of more than 25,000 customers of the Australian Centre for the Moving Image (ACMI) to a hacking forum.
The data is spread across three distinct datasets, and allegedly includes full names, email addresses, gender and dates of birth, sign-in data, invoicing and pricing details, and IP addresses.
Cyber Daily understands the ACMI may use, or have previously used, the same ticketing system, Ferve, that was the source of the recent third-party compromise of the Melbourne International Film Festival, which 2019 also claimed responsibility for.
Cyber Daily has reached out to Ferve for comment on the breach and if any of its other customers have been impacted, but has yet to receive a response.
A Ferve spokesperson, speaking to The Sydney Morning Herald, has confirmed the company is investigating the incident.
“Our investigation remains ongoing, and we are working closely with affected clients, cyber security specialists and relevant authorities to determine the full scope of the incident,” the spokesperson said.
“We are continuing to work closely with MIFF and relevant authorities while assessing any additional measures that may be required to further strengthen our systems and processes.”
The ACMI has not responded to Cyber Daily’s request for comment.
Who is 2019?
The threat actor, 2019, has only been active, at least under that name, since February 2026, but in that time has posted the details of at least 20 breaches to hacking forums.
In some cases, the data is offered for direct download, while in others, the data is for sale.
According to the VECERT threat intelligence platform, 2019 is a “recurring breach actor with 23 tracked publications between 2026-02-06 and 2026-06-01”.
“Its activity has been associated with targets in Australia, New Zealand, Spain, the United Arab Emirates, USA,” it said.
What is the ACMI?
The Australian Centre for the Moving Image, in Melbourne’s Federation Square, hosts events and displays focusing on “screen-based art, film, TV and videogames”, as well as digital culture.
“As the only museum of its kind in Australia, ACMI is home to galleries, state-of-the-art cinemas, studios and labs,” the ACMI said on its website.
“Our programs spotlight both Australian and international voices, supporting the next generation of screen creatives through industry partnerships, education initiatives and our creative incubator.”
According to the ACMI, it hosts 1 million visitors every year.
Who is Ferve?
Based in Melbourne, Ferve Tickets provides event and ticketing services to clients across Australia, North America, the EU, Hong Kong, New Zealand, and Papua New Guinea.
Its customers include the Sydney Fringe Festival, the Sydney Film Festival, and Queer Screen Film Festival.
Want to see more stories from trusted news sources?Make Cyber Daily a preferred news source on Google.
David Hollingworth
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.