Haus des Stiftens

The organisation is known by the alias Haus des Stiftens. Its headquarters is located in Germany. The organisation maintains servers in Munich, Germany. It collects and stores information related to its donors. This donor information includes personal and financial details such as names, addresses, contact data, account information, identification documents, and tax numbers.

On 21 September 2024, Haus des Stiftens experienced a cyberattack targeting its Munich-based servers. The attackers gained unauthorized access to the stored donor information. During the breach, the data was encrypted by the attackers and subsequently exfiltrated from the systems. The compromise exposed a broad range of personally identifiable information belonging to donors. The incident highlighted the organisation's vulnerability to data theft and potential misuse of the exposed information.

In response, the organisation immediately disconnected the affected IT infrastructure to contain the breach. It engaged external forensic experts to investigate the attack and determine the full scope of the compromised data. Relevant authorities were notified to assist with the investigation and regulatory compliance. Ongoing efforts are focused on restoring secure operations while assessing the extent of the impact on donor records. The breach underscores the significant risk of identity theft and financial fraud for individuals whose data was exposed.