Dark Web Plot Foiled: Kido Ransomware Suspects Arrested
Published
- Arrests made: Two have been arrested on suspicion of computer misuse and blackmail in connection with the Kido nursery ransomware attack.
- Ransomware attack: The hackers, calling themselves Radiant, stole personal data, including photos and addresses, of approximately 8,000 children.
- Data exposure: The attacker posted some of the stolen child profiles on a darknet site to pressure the nursery chain into paying a ransom.
London's Metropolitan Police have arrested two individuals in connection with the recent Kido nursery cyberattack. A 17-year-old boy and a 22-year-old man were taken into custody in Bishop's Stortford, Hertfordshire, on suspicion of computer misuse and blackmail.Â
The arrests represent a significant development in the investigation, which began after Action Fraud received a report of a ransomware attack on the nursery chain on September 25. The police have stated their work continues to bring those responsible to justice.
Nature of the Ransomware Attack on Nurseries
The incident was a ransomware attack on nurseries where hackers, identified as the group Radiant, claimed to have stolen sensitive data of 8,000 children and employees, including children’s names, addresses, and photographs.Â
The group also stole the private data of employees, including names, addresses, National Insurance numbers, and contact details.
To exert pressure on Kido to pay a reported ransom of £600,000 (roughly $800,000) in Bitcoin, the attackers posted 20 profiles of children on their darknet site and contacted parents directly, according to the BBC.Â
In an unusual turn, the hackers later blurred the images and eventually claimed to have deleted all the stolen data on October 2. “No more remains, and this can comfort parents," they told the BBC.
Implications for Cybersecurity in Education
This attack highlights critical vulnerabilities in cybersecurity in education, particularly in institutions handling sensitive data of minors. The targeting of a nursery chain and the direct extortion attempts involving children's personal information represent a new low in cybercrime.Â
The incident serves as a reminder for educational facilities of all sizes to implement robust security protocols, conduct regular risk assessments, and have a clear incident response plan. In August, the Catalan Police busted a hacker suspected of targeting schools, banks, and more.
Related
Get expert insights on threats, breaches, scams, and security trends — delivered every Saturday.
Most Popular
Get expert insights on threats, breaches, scams, and security trends — delivered every Saturday.
Most Popular