News item | 28-08-2025 | 10:10
The Netherlands has also been the target of the global cyberspionage campaign of the Chinese hacking organization Salt Typhoon. The Dutch intelligence and security services MIVD and AIVD report this today.
At the end of 2024, a large -scale Chinese cyberspionpion campaign against the global telecom sector came to light. The US attributed this campaign to the stated Chinese hacking organization Salt Typhoon. The MIVD and AIVD can now confirm part of the content of the American study with independent information.
The MIVD and the AIVD endorse the warning those National Security Agency (NSA), CyberSecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) have released. Just like the European Intelligence Services BND (Germany), Supo (Finland), NCSC (United Kingdom) and Aise (Italy).
Targets in the Netherlands
The Dutch organizations probably did not probably receive the same degree of attention from the hackers of Salt Typhoon as those in the US. But both services have observed targets in the Netherlands. This is not about large telecommunications providers, but smaller internet service and hosting providers.
Research by the MIVD and AIVD shows that the Chinese hacking organization had access to routers of the Dutch targets. As far as we know, the hackers have not penetrated their internal networks further. Where possible, the MIVD, AIVD and the NCSC (National Cyber Security Center) have previously shared threat information with targets and other relevant target groups.
The MIVD and the AIVD have been warning for the growing Chinese cyber threat for some time. These activities are now so advanced that continuous commitment and attention is needed to detect and remedy cyber operations against Dutch interests in time. With this, risks can be reduced, but not completely excluded. This is a major challenge for Dutch resilience.