Cyber Incident Victim: Zwijndrecht Police Zone
Date:
Sep 2022
Location:
Belgium
Summary
A hacker infiltrated a Belgian local police zone's server, exfiltrating and leaking sensitive data including license plate records, fines, police reports, and telecommunications information obtained from telecom companies. The attacker attempted extortion before publicly sharing the data, which contained highly sensitive material such as images from an abuse case; security weaknesses in the police network facilitated the breach. Authorities disconnected affected systems and initiated notifications to potentially impacted individuals while working to minimize consequences.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 2 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On or around September 1, 2022, a hacker infiltrated the server of the Zwijndrecht local police zone in Antwerp, Belgium, exfiltrating and subsequently leaking extensive law enforcement data. The compromised information included thousands of license plate records, traffic fines, and internal police reports spanning from 2006 through September 2022. The attacker downloaded a copy of the data and attempted to extort money from the police before publicly posting an internet link to the stolen materials. Dutch tech journalist Daniël Verlaan identified the leaked data and alerted Belgian media outlets VTM Nieuws and Het Laatste Nieuws, whose investigation confirmed the breach’s severity. Journalists verified that the exposed files contained highly sensitive case details, including photographic evidence from an investigation into child abuse where a minor had filed complaints against a parent. The dataset also incorporated information previously requested by police from telecommunications providers such as Telenet, alongside automated license plate recognition (ANPR) camera registrations. Media outlets characterized this as one of Belgium’s most significant government-related data breaches, attributing the incident to inadequate network security within the police infrastructure.
Chief of Police Marc Snels publicly acknowledged the breach on September 1, confirming the immediate disconnection of affected systems to contain further access. He attributed the intrusion to human errors within organizational security practices, noting the prevalence of cybercrime exploiting such vulnerabilities. The police zone expressed regret over the incident and initiated efforts to mitigate consequences, prioritizing direct notifications to individuals potentially impacted by the exposure of personal data. The compromised information posed substantial privacy risks to citizens who had interacted with the police zone, as leaked documents contained identifiable details linked to law enforcement interactions. No operational disruptions to police services were reported, with response efforts focused exclusively on breach containment and stakeholder communication. The incident underscored systemic security deficiencies in safeguarding sensitive judicial and administrative records within the affected police network.