Particle.news
Download on the App Store
4 ARTICLES
·
yesterday

Russian-Backed Laundry Bear Implicated in Dutch Police and NATO Network Breaches

Dutch agencies say Laundry Bear siphoned data on military procurement, arms deliveries, sanctioned technologies using stolen credentials, spear-phishing, pass-the-cookie operations.

A man holds a laptop computer as cyber code is projected on him in this illustration picture taken on May 13, 2017. REUTERS/Kacper Pempel/File Photo
FILE - Erik Akerboom, director-general of the Dutch General Intelligence and Security Service, AIVD, attends a press conference in Zoetermeer, Netherlands, Tuesday, April 23, 2024. (AP Photo/Peter Dejong, File)

Overview

  • Dutch General Intelligence Agency and Military Agency linked Laundry Bear to September 2024 hacks of Dutch police and NATO networks.
  • Investigators found the group spied on companies producing high-end technologies restricted by Western sanctions.
  • Agencies assess the hackers are likely backed by the Russian state and sought intelligence on Western military procurement and arms deliveries to Ukraine.
  • Recorded tactics included using stolen credentials, spear-phishing emails and pass-the-cookie attacks to exfiltrate sensitive data.
  • Microsoft tracks the crew as Void Blizzard and warns it remains active against Western governments and critical sectors in Europe and North America.