German Ethical Hacker Claims Responsibility For Malta Gaming Authority Breach, Vows To Expose Alleged Ties To Organized Crime

German researcher Lilith Wittmann admits to hacking the Malta Gaming Authority (MGA), claiming evidence of organized crime ties and accessing sensitive data.

By: AXL Media

Published: Mar 23, 2026, 10:43 AM EDT

Source: The information in this article was sourced from iGB

Researcher Challenges MGA’s Institutional Integrity

The Malta Gaming Authority (MGA) is facing a significant crisis of confidence following a confirmed breach of its internal servers by a prominent German security researcher. Lilith Wittmann, a self-described ethical hacker with a history of exposing vulnerabilities in the gambling sector, claimed responsibility for the intrusion on March 20. Wittmann alleged that the data retrieved from the MGA’s systems links the regulator to organized crime syndicates operating within Malta’s gaming industry. She characterized the MGA’s public image as a "legitimate public service" as a facade, promising to release evidence that illustrates a darker reality of systemic enablement of criminal activity.

MGA Activates Response Protocols Amid Serious Allegations

The MGA acknowledged the breach in a statement released on March 17, confirming that one of its systems had been compromised. The authority stated it is treating the event with the "utmost seriousness" and has activated established internal response protocols to secure its data and identify the extent of the infiltration. While the regulator has not disclosed specific details regarding the volume or sensitivity of the accessed files, Wittmann’s claims suggest that operator compliance records and highly sensitive player data are among the materials obtained. The breach represents a major vulnerability for a regulator that oversees one of the world's most active and lucrative iGaming jurisdictions.

Legal and Ethical Friction Over "Lawful Engagement"

The MGA has been quick to condemn Wittmann’s methods, labeling the breach as "unacceptable and incompatible with lawful engagement with public institutions." In a follow-up statement on Friday, the authority defended its role, describing Wittmann’s allegations as "unsubstantiated." The regulator maintained that it continues to operate within a robust legal and regulatory framework characterized by integrity, independence, and accountability. This standoff highlights the friction between state-recognized governance frameworks and the radical transparency often sought by the ethical hacking community, which views such breaches as a necessary tool for public accountability.