Hacker "2019" Leaks Data of 25,000 ACMI Customers in Third-Party Breach A hacker known as 2019 has published the personal data of over 25,000 customers of the Australian Centre for the Moving Image (ACMI) on a hacking forum. The leaked datasets allegedly include full names, email addresses, gender, dates of birth, sign-in credentials, invoicing details, and IP addresses. The breach appears linked to Ferve, a Melbourne-based ticketing provider used by ACMI and previously compromised in a similar attack on the Melbourne International Film Festival (MIFF), also claimed by 2019. Ferve has confirmed an ongoing investigation, collaborating with affected clients, cybersecurity experts, and authorities to assess the incident’s scope. The company stated it is evaluating additional security measures to strengthen its systems. ACMI, a prominent Melbourne-based museum and cultural hub focused on film, TV, and digital media, has not yet responded to requests for comment. Ferve serves major clients across Australia, North America, the EU, and Asia-Pacific, including the Sydney Film Festival and Sydney Fringe Festival. The threat actor 2019 has been active since February 2026, with at least 23 tracked breaches targeting organizations in Australia, New Zealand, Spain, the UAE, and the U.S. Some data is offered for direct download, while other leaks are sold. The breach underscores the risks of third-party vendor vulnerabilities in high-profile cultural and event sectors.