"The DDoS attacks are directed at both Dutch and other European organizations. Within the Netherlands, both public and private entities are being attacked."
The NCSC noted that the attacks were claimed by the hacktivist group named NoName057(16) on the threat actor's Telegram channel.
Pro-Russia hacktivists bombard Dutch public orgs with DDoS attacks
May 1, 2025 04:04 PM
Russia-aligned hacktivists persistently target key public and private organizations in the Netherlands with distributed denial of service (DDoS) attacks, causing access problems and service disruptions.
The situation was acknowledged via a statement by the country's National Cyber Security Center (NCSC), part of the Dutch Ministry of Justice.
"This week, several Dutch organizations have been targeted by large-scale DDoS attacks," reads the NCSC announcement.
Although the NCSC said the threat actor's motive is unclear, NoName057(16) declared it was retribution for the Netherlands sending €6 billion in military aid to Ukraine and planning to allocate another €3.5 billion in 2026.
According to local media outlets, the DDoS attacks have impacted the provinces of Groningen, Noord-Holland, Zeeland, Drenthe, Overijssel, Noord-Brabant, and the municipalities of Apeldoorn, Breda, Nijmegen, and Tilburg.
The online portals of these public organizations were reportedly unreachable for several hours this week, though according to officials, there has been no compromise of internal systems or data.
NoName057(16) is a threat actor that, since March 2022, has had significant involvement in numerous DDoS attacks targeting European and American organizations.
The threat group even launched a crowdsourced DDoS platform called 'DDoSIA' where "volunteers" would get paid to lend their firepower in attacks.
The platform became very successful, recruiting thousands of users in under a year and launching multiple disruptive attacks on Western entities.
In July 2024, the Spanish authorities arrested three members of DDoSIA and seized their devices for further investigation.
However, there was no significant follow-up in the operation, and the leaders of the threat group have not been named or indicted yet, and so the DDoS attacks continue.
LATEST
2024: A year of identity attacks | Get the new ebook 
Identity attacks were rampant in 2024 as attackers doubled down on identity-based TTPs. Prepare to defend your organization in 2025 by looking back at identity-based breaches in 2024.
Get a free Ebook on the most impactful identity breaches of 2024, and the attacker tooling and techniques that we can expect in 2025.
Ukrainian extradited to US for Nefilim ransomware attacks
A Ukrainian national has been extradited from Spain to the United States to face charges over allegedly conducting Nefilim ransomware attacks against companies.
- May 01, 2025
- 03:44 PM
0
Harrods the next UK retailer targeted in a cyberattack
London's iconic department store, Harrods, has confirmed it was targeted in a cyberattack, becoming the third major UK retailer to report cyberattacks in a week following incidents at M&S and the Co-op.
- May 01, 2025
- 02:33 PM
- 0
Replace Google Drive with a lifetime of 1TB Koofr storage in this deal
If you need a lot of space but don't want to pay an expensive monthly fee, try Koofr. This unique cloud storage platform is running a promotion for a 1TB cloud storage lifetime subscription, and it's only $119.97 (reg. $810).
- May 01, 2025
- 02:05 PM
- 0
Malicious PyPI packages abuse Gmail, websockets to hijack systems
Seven malicious PyPi packages were found using Gmail's SMTP servers and WebSockets for data exfiltration and remote command execution.
- May 01, 2025
- 12:25 PM
- 0
Get lifetime access to cybersecurity courses in this $70 deal
This cybersecurity training platform gives you lifetime access to a growing library of video lessons, practice tests, exam prep guides, and more, and it's on sale for $69.99 (reg. $280).
- May 01, 2025
- 07:11 AM
- 0
Hackers abuse IPv6 networking feature to hijack software updates
A China-aligned APT threat actor named "TheWizards" abuses an IPv6 networking feature to launch adversary-in-the-middle (AitM) attacks that hijack software updates to install Windows malware.
- April 30, 2025
- 08:33 PM
- 4
WordPress plugin disguised as a security tool injects backdoor
A new malware campaign targeting WordPress sites employs a malicious plugin disguised as a security tool to trick users into installing and trusting it.
- April 30, 2025
- 05:05 PM
- 0
WhatsApp unveils 'Private Processing' for cloud-based AI features
WhatsApp has announced the introduction of 'Private Processing,' a new technology that enables users to utilize advanced AI features by offloading tasks to privacy-preserving cloud servers.
- April 30, 2025
- 03:01 PM
- 0
Kickstart your CISSP prep with this $30 cybersecurity course deal
The CISSP certification can be extremely challenging as you have to learn eight domains of security knowledge. This CISSP Security and Risk Management training bundle can make it easier, and it's only $29.97 for lifelong access (reg. $424) for a little while longer.
- April 30, 2025
- 02:10 PM
- 0
SonicWall warns of more VPN flaws exploited in attacks
Cybersecurity company SonicWall has warned customers that several vulnerabilities impacting its Secure Mobile Access (SMA) appliances are now being actively exploited in attacks.
- April 30, 2025
- 01:23 PM
- 0
No comments:
Post a Comment