Want latest news insights in your inbox? Sign up for our weekly newsletters to get only what matters to your organization. Subscribe Now
Overview
A disturbing new ransomware case has emerged in the UK, where hackers calling themselves Radiant have breached the systems of Kido, a nursery chain, and are threatening to publish more children’s personal profiles online unless a ransom is paid.
The attackers have already leaked the profiles of 20 children and the personal data of dozens of nursery employees, escalating concerns about privacy, safety, and the ethical boundaries of cybercrime.
Incident Details
-
Who was targeted: Kido nursery chain and its families.
-
Data exposed:
-
Children’s profiles, including names, pictures, date of birth, home address, and contact details.
-
Employee information such as names, addresses, national insurance numbers, and contact details.
-
-
Threat: Hackers are threatening to leak more data if their ransom demands are not met.
-
Criminal tactics:
-
Direct phone calls to parents urging them to pressure Kido into paying.
-
Data published gradually to increase psychological pressure.
-
This type of direct victim intimidation is rare in ransomware cases, highlighting a shift in attacker behavior.
Statements & Reactions
-
Kido’s Response:
Kido confirmed the breach occurred through data hosted by Famly, a widely used software service in the childcare sector. The company is cooperating with authorities and the Metropolitan Police investigation. -
Famly’s Statement:
Famly CEO Anders Laustsen stated:“This malicious attack represents a truly barbaric new low, with bad actors trying to expose our youngest children’s data to make a quick buck. We can confirm that there has been no breach of Famly’s security or infrastructure in any way and no other customers have been affected.”
-
Expert Opinion:
Ciaran Martin, former head of the UK’s National Cyber Security Centre (NCSC), described the attack as “absolutely horrible” but urged calm, noting that the physical risk to children is extremely low.
Parents’ Experience
Some parents have reported receiving threatening phone calls, an alarming escalation in ransomware extortion tactics. One mother described the call as “threatening,” while another parent expressed sympathy for nursery staff:
“Any parents that are getting angry should probably direct their anger towards the scumbags that have actually done it. These poor people are the ones getting the brunt of it on the front line.”
Cybersecurity Insights
This incident underscores several key issues:
-
Human Impact of Cybercrime: Beyond financial loss, ransomware now targets families directly, weaponizing fear.
-
Sector Vulnerability: Educational and childcare institutions often rely on third-party software, making them potential weak points.
-
Policy Question: Should regulations enforce stricter controls over childcare data storage and breach response?
Lessons Learned for Organizations
-
Third-Party Risk Management: Regular security audits of vendor platforms.
-
Incident Response Planning: Include protocols for sensitive, high-emotion scenarios like child data exposure.
-
Parent Communication Plans: Clear, calm, and consistent messaging reduces panic and misinformation.
-
Ransomware Preparedness: Maintain immutable backups and follow guidance from law enforcement — typically, never pay ransoms.
Conclusion
The Kido breach represents a chilling escalation in ransomware tactics, where attackers target not just institutions but the most vulnerable members of society — children. While authorities work to contain the damage, this incident should serve as a wake-up call for all organizations handling sensitive personal data.
Cybersecurity is not just about protecting systems — it’s about protecting people.
References
📬 Want to stay ahead of news like this?
Subscribe to our newsletter for weekly insights, updates, and expert analysis.
