Back

WFP Breach Exposes Data of 600,000 Gaza Households

Severity: Medium (Score: 55.8)

Sources: www.thenewhumanitarian.org, Bleepingcomputer, Therecord.Media

Published: 2026-06-04 · Updated: 2026-06-04

Keywords: food, gaza, world, agency, breach, data, recipients

Severity indicators: breach

Summary

The World Food Programme (WFP) reported a breach of its self-registration application affecting approximately 600,000 households in Gaza. Unauthorized parties accessed personal data, including names, ID numbers, phone numbers, and location details. The breach occurred on May 14, 2026, and the WFP has temporarily suspended the registration platform to enhance security measures. Beneficiaries were warned to be cautious of scams and not to share personal information. The WFP is currently investigating the incident and monitoring the situation. This breach follows a history of data security issues within UN agencies, highlighting ongoing vulnerabilities. No specific details about the attack vector or tools used have been disclosed. Key Points: • The WFP breach affects personal data of around 600,000 households in Gaza. • The breach occurred on May 14, 2026, and involved unauthorized access to sensitive information. • The WFP has suspended its registration platform to implement urgent security improvements.

Detailed Analysis

**Impact** Approximately 600,000 Palestinian households in Gaza had personal data compromised, including names, ID numbers, phone numbers, and neighborhood location details. The breach affects beneficiaries registered in the WFP’s self-registration application for Palestine, potentially exposing sensitive personal information used for humanitarian aid distribution. Operationally, the registration platform has been suspended to implement security improvements, but food, cash, and other assistance programs continue without interruption. The incident impacts the humanitarian sector and the Gaza geographic region. **Technical Details** The attackers gained unauthorized access to the WFP’s self-registration application for Gaza, with the breach occurring on May 14, 2026. Specific attack vectors, TTPs, malware, exploited CVEs, or infrastructure details were not disclosed in the available sources. No indicators of compromise (IOCs) were provided. The incident appears to involve data exfiltration during the exploitation phase of the kill chain. **Recommended Response** Defenders should monitor for suspicious access attempts and unauthorized data exfiltration related to registration platforms. The WFP has temporarily suspended the affected system to implement urgent security and system protection improvements; similar organizations should review and harden access controls and authentication mechanisms on registration portals. Beneficiaries should be warned against phishing attempts impersonating the WFP. No specific patches or IOCs were provided for immediate blocking or detection.

Source articles (3)

  • UN food agency investigates breach exposing data of Gaza aid recipients — Therecord.Media · 2026-06-04
    In a message sent to aid recipients via Telegram over the weekend, the World Food Programme (WFP) said that "unauthorized parties" had accessed data stored in its self-registration application in Gaza…
  • UN food agency discloses breach affecting 600,000 Gaza households — Bleepingcomputer · 2026-06-04
    The United Nations' World Food Programme (WFP), the world's largest humanitarian organization, revealed over the weekend that its self-registration application (SRA) for Palestine was breached. The WF…
  • United Nations Cyber Attack — www.thenewhumanitarian.org · 2026-06-04

Timeline

  • 2026-05-14 — Data breach occurred: Unauthorized parties accessed personal data of beneficiaries through the WFP's self-registration application.
  • 2026-06-04 — Breach disclosed to the public: The WFP announced the breach via Telegram, informing affected aid recipients and the media.
  • 2026-06-04 — WFP warns beneficiaries: The WFP advised beneficiaries to be cautious of scams and not to share personal information.

Related entities

  • Data Breach (Attack Type)
  • Ransomware (Attack Type)
  • United Nations (Company)
  • World Food Programme (Company)
  • Italy (Country)
  • Palestine (Country)
  • 8Base (Ransomware Group)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed