Netherlands Confirms Chinese Cyber-Espionage Campaign
The Netherlands has officially disclosed a cyber-espionage campaign linked to China that has impacted critical sectors across the globe. According to the Ministry of Defense, the attacks were carried out by groups tracked under the names Salt Typhoon and RedMike. Unlike in the United States, where the attackers were particularly active, their operations in the Netherlands focused primarily on smaller internet service providers and hosting companies.
The investigation revealed that the attackers had gained access to routers within Dutch organizational networks, though no evidence of penetration into internal systems was found. Nevertheless, the scale of the threat continues to grow, and the attacks have become so sophisticated that their timely detection and mitigation require continuous monitoring and defensive efforts. Eliminating the risk entirely remains impossible, raising serious concerns about the resilience of national infrastructure.
This announcement followed immediately after the publication of a joint warning issued the previous day. In it, 13 countries—including the United States, the United Kingdom, Germany, and others—accused Chinese companies of participating in cyber intrusions. The document stated that several of the operations aligned with already known campaigns tracked in the cybersecurity industry under the codenames Salt Typhoon, RedMike, OPERATOR PANDA, UNC5807, and Ghost Emperor.
The activity in question refers to a large-scale hacking campaign first uncovered in 2024, when attackers intercepted the communications of high-ranking participants in U.S. election campaigns. Subsequent findings revealed that the intrusions had spread to more than 10 countries. Intelligence reports indicate that the primary targets included organizations in the telecommunications, transportation, and hospitality sectors. The data harvested from these breaches enabled Chinese intelligence services to monitor the movements and communications of specific individuals worldwide.
Support Our Threat Intelligence
If you find our technology report and cybersecurity news helpful, consider supporting our work.
Buy Me a Coffee
PayPal
