Dutch police arrest suspect for breaking into Ajax’s computer systems

Published: 28 May 2026
ajax football clb fans, men, red light, red steam, bald man, crowd hands up
Ajax celebrating victory during the Dutch Eredivisie match. Jeroen van den Berg/Soccrates/Getty.

The Dutch National Police have arrested a 35-year-old man for hacking the IT systems of professional soccer club Ajax earlier this year.

The suspect was arrested in the municipality of Buren on Tuesday, May 26th. He is suspected of intentionally and unlawfully intruding into Ajax’s computer systems multiple times.

Following the arrest, police searched the 35-year-old man’s home. During the search, various data storage devices were seized for further investigation.

ADVERTISEMENT

No further details were shared.

jurgita justinasv Izabelė Pukėnaitė vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Follow us

Last March, Ajax disclosed that an ethical hacker had gained unauthorized access to the club’s IT systems, exposing the personal information of over 300,000 fans.

According to the club, only the email addresses of a few hundred people were viewed, along with sensitive and personal information belonging to fewer than 20 people with a stadium ban.

The vulnerability in the club’s internal network also allowed the unauthorized person to modify and remove stadium bans of 538 supporters.

Further investigation revealed that the names, email addresses, row and seat numbers, and barcodes of a group of approximately 400 people who hold tickets for the Ajax vs FC Twente, Ajax Women vs Feyenoord Women, and Ajax vs PSV matches were accessed.

Tess van Bentem, Ilayah Dostmohamed, black and white women playing football, green grass
Tess van Bentem of Feyenoord V1, Ilayah Dostmohamed of Ajax Women. ANP via Getty.

The ethical hacker who was responsible for the breach explained how he pulled it off. He said that every Ajax app user has the same digital key to make adjustments to their account.

ADVERTISEMENT

“By manipulating a sent data packet, you can perform actions on someone else’s behalf, such as transferring a ticket,” he told Dutch news outlet RTL Nieuws.

In addition, Ajax used multiple software interfaces or APIs where the administrator’s digital key could be found.

“This way, an unauthorized person could gain access to all kinds of sensitive data belonging to Ajax fans and perform actions,” the ethical hacker said.

Strong password generator

Upgrade the security of your online accounts.
Create strong passwords that are completely random and impossible to guess.
Generated unique password
Ad link_title
Convenient way to secure and use all your passwords. Now 72% OFF!
Get NordPass

As a precautionary measure, soccer fans with tickets to one of the last three games of the season were given new mobile tickets.

Lastly, Ajax notified the Dutch data protection authority and filed a police report of the security incident.

Unlock more exclusive Cybernews content on YouTube.

ADVERTISEMENT
Share
Post
Share
Share
Share
More from Cybernews
Companies using Fable 5 beware: it’s collecting your data, and there are no exceptions
World’s leading mathematicians ridicule AI hype in high-IQ declaration
Democrats are far more worried than Republicans that AI will take jobs, new poll finds
Europe’s tech revolution feels like Soviet déjà vu
New York demands advertisers use “synthetic performer” label or else
The surprising way Elon Musk is powering your next holiday flight
ADVERTISEMENT
Leave a Reply

Your email address will not be published. Required fields are markedmarked