UN World Food Programme Discloses Breach Affecting 600,000 Gaza Households
The United Nations' World Food Programme (WFP) revealed a data breach of its self-registration application (SRA) for Palestine. The incident exposed sensitive information for approximately 600,000 Gaza households, including names, ID numbers, phone numbers, and location information.
Signal context
First seen: Jun 5, 2026
Last updated: Jun 25, 2026
Status: Public signal
Key points
- 600,000 Gaza households affected.
- Breach of the self-registration application (SRA) for Palestine.
- Exposed data includes names, ID numbers, phone numbers, and location information.
Signal analysis
BetaIt helps compare this signal with other published signals without treating the labels as final determinations.
Likely country: Location not provided
Watch internet-facing systems, credential abuse and exploit activity.
- Source type: outside the affected organization
Impact area: Confidentiality
Likely asset: User or customer data
- 1 signal in the same sector
- 95 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
UN food agency investigates breach exposing data of Gaza aid recipients - The Recordhttps://therecord.media/un-world-food-programme-data-breach-gazaPublic source from therecord.media.
World Food Programme reports data breach affecting Palestinian beneficiarieshttps://scmediacommunity.com/2026/06/04/world-food-programme-reports-data-breach-affecting-palestinian-beneficiaries/Public source from scmediacommunity.com.
UN food agency data breach exposes 600,000 Gaza householdshttps://www.aa.com.tr/en/middle-east/un-food-agency-data-breach-exposes-600-000-gaza-households/3239611Public source from aa.com.tr.
UN food agency discloses breach affecting 600,000 Gaza householdshttps://www.privacyguides.org/news/2026/06/05/data-breach-roundup-may-29-june-4-2026/Public source from privacyguides.org.
Cybersecurity Daily Briefing: June 05, 2026 - TECHMANIACS.comhttps://techmaniacs.com/2026/06/05/cybersecurity-daily-briefing-june-05-2026/Public source from techmaniacs.com.
Related signals
Grouped by why the signal is relevant.
Gong Customer Data Exposed in Klue Supply Chain Attack
Gong, a revenue intelligence platform, was among the organizations impacted by the Klue supply chain attack. The incident involved unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform. The Icarus extortion group claimed responsibility for the attack.
Insurity Customer Data Exposed in Klue Supply Chain Attack
Insurity, a leading provider of cloud-based software for insurance carriers, was impacted by the Klue supply chain attack. The incident involved unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform.
HackerOne Affected by Klue Supply Chain Attack
Cybersecurity firm HackerOne was among the organizations impacted by the Klue supply chain attack, which involved unauthorized access to customer data within Salesforce environments. The attack leveraged compromised OAuth tokens from the Klue platform.
Sprout Social Data Compromised in Klue Supply Chain Attack
Sprout Social, a social media management platform, was among the companies affected by the Klue supply chain attack. The incident led to unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform. The Icarus extortion group claimed responsibility for the attack.
Jamf Customer Data Exposed in Klue Supply Chain Attack
Jamf, a provider of Apple device management solutions, was impacted by the Klue supply chain attack. The incident involved unauthorized access to customer data stored in Salesforce instances, stemming from compromised OAuth tokens from the Klue platform. The Icarus extortion group claimed responsibility for the attack.
Snyk Affected by Klue Supply Chain Data Breach
Developer security platform Snyk was impacted by the Klue supply chain attack, which led to unauthorized access to customer data within Salesforce environments. The attack leveraged compromised OAuth tokens from the Klue platform.