Back

Dutch Data Protection Authority Breached in Ivanti Zero-Day Exploitation

Severity: High (Score: 66.4)

Sources: Securityaffairs.Co, Infosecurity-Magazine, Theregister

Summary

The Dutch Data Protection Authority (AP) confirmed it was compromised during a wave of attacks exploiting Ivanti vulnerabilities. The attack, which occurred on January 29, involved the Ivanti Endpoint Manager Mobile (EPMM) bugs, leading to a data breach affecting AP employees. This incident was part of a broader exploitation of zero-day vulnerabilities in Ivanti products.

Key Entities

  • Data Breach (attack_type)
  • Zero-day Exploit (attack_type)
  • Council For The Judiciary (company)
  • Dutch Data Protection Authority (company)
  • CVE-2026-1281 (cve)
  • CVE-2026-1340 (cve)
  • T1190 - Exploit Public-Facing Application (mitre_attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed