A new hacker group called Laundry Bear was behind a cyberattack on the Dutch police in 2024 and has targeted other NATO and European countries, Dutch intelligence agencies said Tuesday.
In a joint report to parliament, the Dutch General Intelligence and Security Service (AIVD) and the Military Intelligence and Security Service (MIVD) said: “The cyberattacks against Dutch institutions are part of a larger international cyber threat posed by the hacker group.”
According to the report, Laundry Bear operated under the radar until September 2024, when it was found to have hacked into confidential data belonging to Dutch police officials.
The report added that group has also been involved in cyber-espionage operations aimed at stealing sensitive information about Western military equipment and arms deliveries to Ukraine.
“They have a specific interest in countries of the European Union and NATO. Laundry Bear is after information about the purchase and production of military equipment by Western governments and Western deliveries of weapons to Ukraine,” said Vice Adm. Peter Reesink, director of the MIVD.
Additionally, Dutch intelligence said the group has targeted companies that develop advanced technologies that are difficult for Russia to access due to Western sanctions imposed over the war in Ukraine.
Dutch intelligence agencies said the group is “extremely likely” to be supported by the Russian state.
The Netherlands has strongly supported Ukraine since Russia’s full-scale invasion in February 2022. This includes sending F-16 fighter jets and other military support.
The Dutch report adds to growing evidence of Russian-linked cyber campaigns. Last week, the U.S. National Security Agency reported similar attacks on Western companies shipping aid to Ukraine. In April, France said a Russian-linked hacking group known as Fancy Bear targeted the Paris Olympics and French agencies from 2021 to 2024.
Moscow has not yet commented on the recent report.
