Hackers are claiming to have stolen highly sensitive personal data, including the pictures, names, and addresses of approximately 8,000 children, from the international nursery chain Kido. The cybercriminal group is now using this information to demand a ransom from the company, which operates 18 sites in and around London, as well as locations in the US and India.
The criminals assert they also possess data related to the children's parents and carers, in addition to internal safeguarding notes. As part of their extortion attempt, they claim to have directly contacted some parents by phone.
Company Response and Parent Reaction
While Kido has not publicly confirmed the hackers' claims, an employee did confirm they were notified of a data breach. Another employee indicated the nursery was asking parents not to speak to the media.
One parent, who wished to remain anonymous, confirmed receiving a detailed, "professional and well-written" email from the hackers outlining the stolen information. Despite the breach, she stated that the nursery "handled it well." Another parent, Bryony Wilde, voiced outrage, calling the children "completely innocent victims" whose personal details should not be exploited.
The Hacking Group and Industry Reaction
The group responsible for the attack is a relatively new organization calling itself Radiant. The criminals contacted the BBC and subsequently posted details on their darknet website, publishing a sample of ten children's pictures and profiles as proof of the breach and to pressure the nursery chain into paying the ransom.
When questioned by the BBC about the ethics of extorting a nursery, the hackers stated they "weren't asking for an enormous amount" and deserved "compensation for our pentest" (a professional term for security testing, which they clearly conducted without permission). They ultimately admitted the attack was "of course" about money.
Cybersecurity experts have reacted with disgust. Check Point described the targeting of nurseries as "an absolute new low," with one expert calling it "indefensible" and "appalling." Rebecca Moody, a data research head at Comparitech, noted that the data posted online raises "alarm bells" and urged Kido to contact all affected parties immediately.
The Metropolitan Police confirmed they received a referral about a ransomware attack on a London-based organization on September 25, and their Cyber Crime Unit has launched an investigation. The Information Commissioner's Office (ICO) has also received a report and is currently assessing the incident.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
