Nursery Hackers Threaten to Publish More Children's Profiles Online
A devastating breach of a popular nursery chain has left thousands of parents on edge, as hackers are threatening to publish more children's profiles online unless they are paid. The cyber attack, which was carried out by a group calling themselves Radiant, has exposed the personal data of dozens of employees and posted pictures and private information of 20 children from the Kido nursery chain.
The breach is believed to have occurred when hackers accessed the data hosted by software service Famly, which is widely used by other nurseries and childcare organizations. The company has assured parents that there was no breach of their security or infrastructure, but the incident has left many feeling anxious about the safety of their children's information.
The Extent of the Breach
The hackers' website contains a gallery of 20 children with their nursery pictures, date of births, birthplace, and contact details. Parents have been contacting the BBC with concerns about the hack, including one mother who received a threatening phone call from the criminals.
Another parent, Stephen Gilbert, told the Today programme that he was concerned about the potential risks of the children's information being posted online. "The revelation that the children's details could have been put on the dark web is very concerning and alarming for me," he said.
The Hackers' Motive
The hackers, who claim to be motivated by money, stated that they would publish more children's profiles online unless Kido paid a ransom. However, in an unusual move, they also claimed to have hired people to make the calls to parents, suggesting a level of desperation and a lack of concern for their victims.
The hackers first contacted the BBC about the breach on Monday, stating that they did it "for money, not for anything other than money." They also stated that this was not their first time carrying out such an attack and would not be their last. However, they claimed to have decided not to target pre-schools again due to too much attention.
The Response
Kido has not responded to the BBC's requests for comment, but the company is working with the authorities and the Met Police are investigating the breach. Former head of the National Cyber Security Centre, Ciaran Martin, described the hackers' actions as "absolutely horrible" and noted that the risk of physical harm to children was extremely low.
Famly's boss, Anders Laustsen, condemned the attack, stating that it represented a "truly barbaric new low" with bad actors trying to expose young children's data for financial gain. The company has assured parents that there was no breach of their security or infrastructure and are taking steps to prevent similar incidents in the future.
The Warning
Police advice is to never pay hacker ransoms, as it encourages the criminal ecosystem. However, in this case, the hackers' tactics suggest a level of callousness and desperation that is concerning for parents and authorities alike.
"Any parents who are getting angry should probably direct their anger towards the scumbags who have actually done it," said Sean, whose child attends the Kido nursery. "You only see the people who run your nursery, and all of them are great. It's the poor people on the front line who are getting hit."