Internal threats: When the cyber risk is that the minister publishes a photo in which the access code and PIN are seen in the URL

Human Factor in Cyber Risk: The Dutch Defense Minister’s Video Conference Incident

A recent event serves as a perfect reminder that technology is only as secure as the people using it.

The Dutch Defense Minister, Ank Bijleveld, posted a photo on Twitter that accidentally revealed five of the six digits of the PIN code needed to access a confidential EU defense ministers’ video conference. The URL with the access code was clearly visible in the image.

Dutch journalist Daniel Verlaan from RTL Nieuws noticed the detail and, after several attempts, successfully guessed the missing digit — gaining access to the secure meeting.

As RTL Nieuws reported:

"After a number of attempts, RTL Nieuws succeeded in guessing the PIN code of the secret consultation, because five of the six digits of the pin code were visible in the photo."

This incident underscores a critical truth in cybersecurity:
Even the most sophisticated systems can be compromised if sensitive details are unintentionally exposed through human error.

Lessons Learned:

• Think before posting: Images can contain hidden or overlooked sensitive data.
• Awareness training: Senior executives and public officials must be trained in secure information handling.
• Multi-layer verification: Rely on strong authentication and avoid using easily guessable access codes.

📎 Sources:

• BBC: Read article
• Tweet reference: View here

Contact Kymatio if you want to raise awareness among senior executives and prevent similar security lapses.