Cyberattack Paralyzed Road Traffic Enforcement in the Netherlands: Violations Go Unpunished
An entire country — without fines.
An entire country — without fines.
Several traffic enforcement cameras in the Netherlands were temporarily taken offline after an incident in July. As confirmed by the Dutch Openbaar Ministerie (OM) — the public prosecution service — the shutdown affected both stationary devices, sections with average speed enforcement systems, and mobile complexes on highways. The cause was a large-scale cyber incident that forced OM to immediately disconnect all of its IT systems from the internet.
The attack did not affect the cameras themselves: they continued to operate autonomously. However, the key servers to which cameras transmit data for further processing and fine issuance became inaccessible due to OM’s network isolation. This made it impossible to reactivate previously disabled cameras, even if they had been turned off for routine reasons — such as technical checks, calibration, or relocation.
A representative of the Central Bureau for Processing of Fines noted that the temporary shutdown of individual cameras is standard practice. Such cases occur regularly, especially when equipment is being moved or serviced. But in the current situation, even when reactivation is necessary, OM refrains from any action involving reconnecting devices to its internal systems. Beyond the technical impossibility, the organization does not want to take risks given the recent compromise.
The exact number of affected enforcement systems has not been disclosed, but it is clear that the issue involves more than just one or two units — a significant portion of the network has been impacted. The full scale of the outage, as well as the timeline for restoration, remain unknown.
Recovery of OM’s infrastructure after the July attack is proceeding gradually. OM representatives stated they are working around the clock, restoring access to individual services step by step. For example, email functionality has already been restored, but other IT systems — including the platform managing traffic cameras — remain unavailable. According to Hans Munen, head of OM’s IT department, the attack’s consequences have been extensive, and the entire team has been working on high alert since July.
The cyberattack on OM has become one of the most serious incidents of its kind in the Netherlands in recent years, with an impact extending far beyond the IT department. Other government agencies, especially those involved in law enforcement and traffic monitoring, have also felt the consequences. For now, Dutch authorities are taking an extremely cautious approach to avoid a repeat compromise of critical infrastructure.
