Dutch police arrests suspect linked to Ajax football club hack

Recorded: May 27, 2026, 1:23 p.m.

Original

News

Featured
Latest

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

Laravel Lang packages hijacked to deploy credential-stealing malware

Netherlands seizes 800 servers of hosting firm enabling cyberattacks

Ubiquiti patches three max severity UniFi OS vulnerabilities

FBI warns of in-person data theft attacks from extortion gang

Your grocery routine’s easiest upgrade is a Sam’s Club membership for just $25

CISA gives feds 4 days to patch actively exploited cPanel plugin flaw

Dutch police arrests suspect linked to Ajax football club hack

Tutorials

Latest
Popular

How to access the Dark Web using the Tor Browser

How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11

How to use the Windows Registry Editor

How to backup and restore the Windows Registry

How to start Windows in Safe Mode

How to remove a Trojan, Virus, Worm, or other Malware

How to show hidden files in Windows 7

How to see hidden files in Windows

Webinars
Downloads

Latest
Most Downloaded

Qualys BrowserCheck

STOPDecrypter

AuroraDecrypter

FilesLockerDecrypter

AdwCleaner

ComboFix

RKill

Junkware Removal Tool

Deals

Categories

eLearning

IT Certification Courses

Gear + Gadgets

Security

VPNs

Popular

Best VPNs

How to change IP address

Access the dark web safely

Best VPN for YouTube

Forums
More

Virus Removal Guides
Startup Database
Uninstall Database
Glossary
Send us a Tip!
Welcome Guide

HomeNewsSecurityDutch police arrests suspect linked to Ajax football club hack

Dutch police arrests suspect linked to Ajax football club hack

By Sergiu Gatlan

May 27, 2026
05:09 AM
0

The Dutch National Police arrested a 35-year-old man suspected of hacking the professional football club Ajax Amsterdam (AFC Ajax) earlier this year.
The suspect was arrested in Buren and, according to a Tuesday press release, he is believed to have hacked into the football club's systems multiple times.
"On the morning of Tuesday, May 26, the police arrested a 35-year-old man from the municipality of Buren for computer trespassing at the Amsterdam football club Ajax. The man is suspected of deliberately unlawful intrusion into Ajax's computer systems several times," the police said.
"In early 2026, Ajax was confronted with the computer trespass after the suspect granted himself access to the football club's computer systems. After the police were informed, the criminal investigation department started an investigation in which the suspect from the municipality of Buren came into the picture."
AFC Ajax disclosed the incident in late March, saying that the attacker exploited vulnerabilities in its IT systems to access data belonging to a few hundred individuals.
The vulnerability also allowed modifying stadium bans imposed on fewer than 20 individuals and transferring purchased tickets to others.
According to an RTL report, the same security flaw also enabled broad access to fan data via APIs and shared keys, with the hacker demonstrating how they could reassign a VIP season ticket in seconds.
Most worryingly, they also demonstrated how they could manipulate 538 supporter stadium bans, 42,000 season tickets, and view details on more than 300,000 accounts.
The Dutch football club has since patched vulnerabilities exploited in the attack and has notified the Dutch Data Protection Authority and the police of the incident.
In September 2025, the Dutch National Police also arrested two teenage boys suspected of spying for Russia using a WiFi sniffer device near Europol and Eurojust offices, as well as the Canadian embassy.
More recently, financial crime investigators in the Netherlands (FIOD) arrested two men and seized 800 servers linked to a web hosting company that enabled cyberattacks, interference operations, and disinformation campaigns.

The Validation Gap: Automated Pentesting Answers One Question. You Need Six.

Automated pentesting tools deliver real value, but they were built to answer one question: can an attacker move through the network? They were not built to test whether your controls block threats, your detection rules fire, or your cloud configs hold.This guide covers the 6 surfaces you actually need to validate.
Download Now

Related Articles:
Dutch Finance Ministry takes treasury banking portal offline after breach7-Eleven data breach exposes personal information of 185,000 peopleNetherlands seizes 800 servers of hosting firm enabling cyberattacksUS and Canada arrest and charge suspected Kimwolf botnet adminINTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers

Ajax
Arrest
Football
Hack
Netherlands
Soccer

Sergiu Gatlan
Sergiu is a news reporter who has covered the latest cybersecurity and technology developments for over a decade. Email or Twitter DMs for tips.

Previous Article
Next Article

Popular Stories

FBI warns of Kali365 phishing service targeting Microsoft 365 accounts

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

Anthropic’s restricted Claude Mythos model may be coming to Claude Code

Sponsor Posts

33% Rise in Healthcare Credential Theft in 2025: What you need to know

AI is a data-breach time bomb: Read the new report

Overdue a password health-check? Audit your Active Directory for free

Protect Your Business from Ecommerce Fraud

Upcoming Webinar

Main Sections

News
Webinars
VPN Buyer Guides
SysAdmin Software Guides
Downloads
Virus Removal Guides
Tutorials
Startup Database
Uninstall Database
Glossary

Community

Forums
Forum Rules
Chat

Useful Resources

Welcome Guide
Sitemap

Company

About BleepingComputer
Contact Us
Send us a Tip!
Advertising
Write for BleepingComputer
Social & Feeds
Changelog

Username

Password

Remember Me

Not a member yet? Register Now

Reporter

Help us understand the problem. What is going on with this comment?

Spam

Abusive or Harmful

Inappropriate content

Strong language

Other

Read our posting guidelinese to learn what content is prohibited.

Submitting...
SUBMIT

The Dutch National Police arrested a 35-year-old man in Buren who is suspected of hacking into the systems of the professional football club Ajax Amsterdam (AFC Ajax). This arrest followed an incident where the suspect is believed to have gained unauthorized access to the football club's computer systems multiple times. The investigation commenced after Ajax disclosed the incident in late March, revealing that the attacker exploited vulnerabilities within the club's IT infrastructure to access data belonging to several hundred individuals.

The nature of the exploit was significant, as it extended beyond simple access to data; the vulnerabilities allowed for the modification of stadium bans imposed on fewer than twenty individuals and the transfer of purchased tickets. Furthermore, the security flaw enabled broad access to fan data through Application Programming Interfaces (APIs) and shared keys, demonstrating the ability to rapidly reassign VIP season tickets. Most critically, the hacker was able to manipulate 538 supporter stadium bans, affect 42,000 season tickets, and view details pertaining to over 300,000 accounts. Following the discovery, AFC Ajax took steps to patch the exploited vulnerabilities and notified both the Dutch Data Protection Authority and the police regarding the breach.

In addition to the specific hacking incident involving Ajax, other related criminal activities were noted by Dutch law enforcement. In September 2025, the Dutch National Police also apprehended two teenage boys suspected of acting as spies for Russia, utilizing a WiFi sniffer device in proximity to Europol and Eurojust offices, as well as the Canadian embassy. More recently, financial crime investigators within the Netherlands (FIOD) conducted arrests and seized 800 servers belonging to a web hosting company that were implicated in enabling various cyberattacks, interference operations, and disinformation campaigns. This case demonstrates a broader pattern of coordinated cybercrime and espionage activities within the jurisdiction.