What Happened
In the miff.com.au (Melbourne International Film Festival) data breach disclosed in early June 2026, MIFF reported a data security incident involving a compromise of customer data held in a third‑party ticketing/engagement platform, not MIFF’s own core systems. According to MIFF’s public statement, the exposed information related to customers and supporters and may have included typical account and contact details used for ticketing and festival communications, though payment card data was not indicated as being impacted. External reporting and MIFF’s notice describe the incident as a targeted cyberattack on the external provider used by MIFF for customer management, resulting in unauthorised access and exfiltration of personal information affecting at least part of MIFF’s customer base, which numbers in the hundreds of thousands, although an exact record count for the breach has not been formally confirmed.