Skip to the content.

This page is a sub page of the case file for case DIVD-2026-00007 - ictim Notification Operation Endgame S03 & S04, which contains the general information about this case.

You foudn out that some of your credentials been stolen by an infostealer

If you are reading this it probably means that your data was found in the dataset of Operation Endgame and you find out via e.g. Have I Been Pwned.

What does this mean?

Your credentials where likely stolen from from a computer by criminals operating infostealer malware like StealC. The criminals either intended to sell these credentials to other criminals or to abuse these accounts to make more victims.

What should I do?

We need your help to make sure criminals can no longer abuse the information they have about you.

Here are a few steps you can take:

Mind you, what we emailed you is a masked password. All characters in the password were replaced by an asterisk (*) except the four last characters. So e.g. the password VeryWeakPassword01! would have been transformed to ***************d01!.

More questions?

The main case file contains a Frequently Asked Questions (FAQ) section. If that does not answer your questions, please reply to the email you received or email us at DIVD-2026-00007@csirt.divd.nl.

For more information, see the main case file.