Hacker claims responsibility for Gaming Authority data breach

A hacker has claimed responsibility for a recent cyber breach at the Malta Gaming Authority, alleging sensitive data has been obtained and shared with media organisations and authorities.

In a statement posted on X, Lilith Wittmann said she had infiltrated the authority’s systems and warned of further disclosures relating to what she described as “organised crime enablement schemes” linked to Malta’s iGaming sector.

The MGA confirmed last week it had suffered a system breach, but has not publicly attributed the attack or detailed the extent of the data compromised.

Wittmann claimed any attempt by Maltese authorities to pursue legal action against her would result in the immediate release of a larger archive of data connected to the global iGaming industry.

She also expressed concern about the possibility of extradition to Malta, where she said she could face up to 10 years in prison if convicted.

“I am certain that the information obtained is so valuable for the public discourse that obtaining it will one day, in the not-too-distant future, be seen as a justified necessity,” she said.

The hacker added no further details would be released for the time being and urged journalists to refrain from making additional inquiries until further notice.

Wittmann also suggested the breach was easily carried out, comparing it to previous cyber-attacks involving the Christian Democratic Union (CDU).