News
AFAS protects customers against infostealers with Passguard
Jan 26, 2026
AFAS has engaged Passguard to protect customers against the risks posed by infostealer malware. As one of the largest ERP providers in the Netherlands, with millions of users relying on AFAS software on a daily basis, early insight into the misuse of digital access is critical.
Infostealers do not only target usernames and passwords. They primarily extract active sessions, including session tokens and session cookies. With this data, cybercriminals can access systems without re-authentication, even when strong passwords and multi-factor authentication are in place. These session artefacts are actively traded on criminal marketplaces and present a real risk of large-scale abuse.
Through dark-web monitoring provided by Passguard, AFAS gains insight into session data and other access-related information appearing in the criminal ecosystem. When relevant data is identified, AFAS can proactively terminate sessions or revoke access, preventing misuse before customers are impacted.
This approach allows AFAS to reduce the risk of large-scale incidents similar to recent international cases, where attackers gained extensive access through stolen sessions. By acting early, AFAS helps prevent a single infection from escalating into a broader security incident.
With the use of Passguard, AFAS demonstrates a proactive stance in addressing infostealers and protecting a large user base from session-based abuse.
Read more about this cooperation on the AFAS website (Dutch):
https://klant.afas.nl/succesbeheer/infostealers-het-onzichtbare-computervirus
Get alerted the moment infected devices and sessions are put up for sale on criminal marketplaces.