Venice Film Festival

The Venice Film Festival confirmed a data breach on July 7, 2025, where hackers accessed personal information of participants, including journalists. The leaked data included names, email addresses, phone numbers, mailing addresses, and tax codes for VAT refunds. Unauthorized individuals copied documents from the festival's servers, but the IT team promptly isolated and secured the affected systems. The breach did not involve organizational data, payments, bookings, or ticketing, but the exposed personal information could still pose risks to individuals. The festival notified affected parties and authorities under EU GDPR regulations.

Source: https://www.techradar.com/pro/security/venice-film-festival-hacked-attendee-data-leaked-online

TPRM report: https://www.rankiteo.com/company/fondazione-la-biennale-di-venezia

"id": "fon341080725",
"linkid": "fondazione-la-biennale-di-venezia",
"type": "Breach",
"date": "8/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Entertainment',
                        'location': 'Venice, Italy',
                        'name': 'Venice Film Festival',
                        'type': 'Event Organizer'}],
 'customer_advisories': 'Breach notification letters sent to affected '
                        'individuals',
 'data_breach': {'data_exfiltration': 'Yes',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal Information']},
 'date_detected': '2025-07-07',
 'description': 'The Venice Film Festival confirmed a data breach where '
                'hackers accessed personal information of participants, '
                'including journalists. The breach occurred on July 7, 2025, '
                'and affected data includes names, email addresses, phone '
                'numbers, mailing addresses, and tax codes.',
 'impact': {'data_compromised': ['names',
                                 'email addresses',
                                 'phone numbers',
                                 'mailing addresses',
                                 'tax codes'],
            'identity_theft_risk': 'Potential risk due to exposed personal '
                                   'data'},
 'recommendations': ['Change passwords',
                     'Enable multi-factor authentication (MFA)',
                     'Be aware of potential phishing attempts'],
 'references': [{'source': 'TechRadar Pro'}],
 'regulatory_compliance': {'regulations_violated': ['EU GDPR'],
                           'regulatory_notifications': 'Supervisory authority '
                                                       'notified under Article '
                                                       '33 of EU GDPR'},
 'response': {'communication_strategy': 'Breach notification letters sent to '
                                        'affected individuals',
              'containment_measures': 'Isolated affected systems',
              'incident_response_plan_activated': 'Yes',
              'law_enforcement_notified': 'Yes',
              'remediation_measures': 'Secured systems and initiated '
                                      'restoration operations'},
 'title': 'Venice Film Festival Data Breach',
 'type': 'Data Breach'}

Venice Film Festival

U.S. Federal Courts

Optus

Air France