Skip to main content
Netherlands News in English

Main navigation

  • Top stories
  • Health
  • Crime
  • Politics
  • Business
  • Tech
  • Culture
  • Sports
  • Weird
  • 1-1-2
Image
The flags of China and the Netherlands
The flags of China and the Netherlands - Credit: ruskpp / DepositPhotos - License: DepositPhotos
Crime
Politics
Tech
Dutch Ministry of Defense
Chinese espionage
NCSC
MIVD
Kajsa Ollongren
Tuesday, 6 February 2024 - 16:34

Share this article:

Opens in a new window Opens in a new window Opens in a new window Opens in a new window Opens in a new window Opens in a new window

Netherlands accuses China of cyber spying after security service makes malware discovery

The Dutch Ministry of Defense alleged on Tuesday that a Chinese state actor has attempted to carryout a cyber espionage campaign in the Netherlands for an extended period of time. The ministry said that the Dutch Military Intelligence and Security Service (MIVD) discovered advanced Chinese malware that made this possible. The malware is used on Fortigate systems from the company Fortinet, which is officially headquartered in California.

China uses this type of malware to spy on computer networks, the ministry said. The software is meant to allow computer users to work remotely. Fortinet claims they supply their cybersecurity products to over 700,000 customers globally.

The MIVD found the malware, which it named Coathanger, last year at the Dutch military on an isolated computer network. This was used for unclassified Research and Development. Because this system was isolated, it did not lead to damage to the Dutch Defense network. The MIVD published a bulletin about the discovery in English to notify information technology workers about the threat.

“The MIVD is choosing for the first time to publish a technical report on the working methods of Chinese hackers. It is important to attribute such espionage activities to China,” said Defense Minister Kajsa Ollongren. “This is how we increase international resilience against this type of cyberespionage.”

The MIVD and the General Intelligence and Security Service (AIVD) shared information about the incident and the characteristics of the malware on the website from the National Cyber Security Center (NCSC). “The MIVD and AIVD discovered a new Remote Access Trojan (RAT) malware during an incident response investigation. This RAT is a targeted persistent malware that operates outside of traditional detection measures and is designed specifically for FortiGate devices,” the NCSC wrote.

The detected malware installed backdoor access by exploiting a known vulnerability in FortiGate devices. The MIVD publication therefore does not attribute the new vulnerability in all FortiGate devices.

With the publication, the Dutch agencies want FortiGate system users to be able to determine whether they have become victims. They can also take measures to defend themselves. The MIVD asked organizations that encounter this malware to report it to the NCSC. This can help stop the Chinese espionage campaign, they said.

Late last year, NRC revealed that Chinese hacker group Chimera allegedly breached the systems of Dutch chip manufacturer NXP. The hackers had access to NXP systems for more than two years starting at the end of 2017. Additionally, after a suspected Chinese surveillance balloon was seen over the United States a year ago, the Dutch police said they would use fewer drones made in China. Volkskrant journalist Marije Vlaskamp was also targeted with violence and threats after writing critically about China, she detailed in an article published last April.

Both China and Russia have been accused of stepping up attempts to either spy on the Netherlands or to infiltrate the workforces of various organizations. This has worked both ways thought, the Dutch intelligence services said. Both the AIVD and MIVD said degraded relationships with the two countries have been a boon for their recruitment efforts.

More like this

Image
The AIVD building in Zoetermeer
Dutch intelligence agencies accused of privacy breaches in large-scale data processing
Image
Outgoing Prime Minister Mark Rutte speaks in the Tweede Kamer about the situation in the Gaza Strip, 19 March 2024
Russian money in Dutch politics is “very worrying,” says Rutte; Investigation started
Image
The Ministry of Defense in The Hague
China denies "groundless" cyber spying accusations; "Opposes malicious speculations"
Image
The Gulf of Aden with the southern portion of the Red Sea to the northwest, Yemen to the north, and the coastal regions of Eritrea, Djibouti, and the Somalian region of Somaliland. February 2020
Netherlands joining U.S. mission to protect Red Sea shipping routes from Houthi attacks
Make NL Times your top Google source

Follow us:

Latest stories

  • Turkish President gifts revolvers, but Rutte rejects his and Jetten leaves his behind
  • Aviation groups consider new alcohol rules after rise in drunken passenger disturbances
  • Former police officer and friend acquitted of raping drunk teen girl; Prosecutors appeal
  • Entire Huizen housing block to be demolished after fatal explosion
  • Zuid-Holland commits €31 million to facilitate Eli Lilly factory in Katwijk

Top stories

  • Dutch home price increases leveling off; Up 2.4% year-on-year to record €506,000: NVM
  • Fire destroys multiple holiday homes on beach in Velsen-Noord; One hurt
  • WorldPride starts with unveiling of permanent Walk of Pride monument through Amsterdam
  • Amsterdam tech company Mews cuts 15 percent of jobs to drive AI
  • People in their 30s, 40s most frustrated by work; Third consider their job meaningless

© 2012-2026, NL Times, All rights reserved.

Footer menu

  • Change Privacy Settings
  • Privacy Policy
  • Contact
  • Partner Content