In a shocking turn of events, hackers have threatened to release even more sensitive information about children from a nursery unless they receive payment. This alarming situation has raised serious concerns among parents and the public alike.
The group of cybercriminals, who identify themselves as Radiant, successfully infiltrated the Kido nursery chain and made public the profiles of ten children just last Thursday. On their dark web site, which can only be accessed through specialized software, they have laid out a so-called "Data Leakage Roadmap." This document ominously states that they plan to unveil profiles of an additional thirty children, along with private information of one hundred employees, unless their demands are met.
As of now, Kido has not provided any comments to the BBC regarding this incident. However, they are actively collaborating with law enforcement, and the Metropolitan Police are currently investigating the breach. Kido has informed parents that the hackers gained access to their data through a software service known as Famly. This particular software is widely utilized by numerous nurseries and childcare organizations, boasting over one million users, including owners, managers, practitioners, and families. Fortunately, there is no evidence to suggest that other customers of Famly have been compromised. The BBC has reached out to Famly for their perspective on the situation.
The hackers' website features a disturbing gallery showcasing the nursery pictures of ten children, complete with their birth dates, places of birth, and personal details such as their living arrangements and contact information. Parents have expressed their deep concern over this breach, with one mother reporting that she received a threatening phone call from the hackers. Preferring to remain anonymous, she recounted how the criminals demanded she pressure Kido into paying a ransom, or else they would publish her child's information online. She described the call as "threatening" and deeply unsettling.
Another parent, Stephen Gilbert, shared his worries during an interview on BBC Radio 4's Today program, revealing that someone in his parents' WhatsApp group also received a similar call. "The fact that our children's details could potentially end up on the dark web is incredibly alarming for me," he stated.
On the other hand, Sean, a parent with a child enrolled at the Kido nursery in Tooting, expressed his understanding of the situation. He stated, "We live in a digital age where so much is online, and we must acknowledge that there is always a risk of incidents like this occurring." He urged parents to direct their anger towards the criminals responsible rather than the nursery staff, who he believes are doing their best under difficult circumstances. "You only see the people that run your nursery, and all of them are great. These poor individuals are the ones facing the backlash on the front lines," he added.
Cybercriminals often resort to making calls to organizations to pressure them into paying ransoms, but it is quite rare for them to contact individual victims directly. In conversations conducted through the messaging app Signal, the hackers, who spoke fluent English, admitted that English is not their first language and claimed they had hired individuals to make the threatening calls. This behavior not only highlights their ruthlessness but also suggests a level of desperation, as it appears Kido is not yielding to their demands.
Law enforcement agencies typically advise against paying ransoms, as doing so only fuels the criminal ecosystem. The hackers initially reached out to the BBC regarding their breach on Monday. After they released the first batch of children's data online, the BBC inquired whether they felt any remorse for their actions. The criminals bluntly stated, "We do it for money, not for anything other than money." They acknowledged their criminality, saying, "I'm aware we are criminals. This isn't my first time and will not be my last time."
Interestingly, they also mentioned that they would refrain from targeting preschools in the future due to the heightened attention this incident has garnered. Since then, they have deleted their Signal account and are no longer reachable.
This situation raises critical questions about data security and the responsibilities of organizations that handle sensitive information. How can parents ensure their children's safety in an increasingly digital world? What measures should be taken to prevent such breaches in the future? We invite you to share your thoughts and opinions in the comments below.
