Hackers who stole sensitive data belonging to more than 8,000 children from the Kido nursery chain have reportedly removed the information from the dark web after failing to secure a ransom payment.
The stolen data included photos, names, and addresses of children across the UK and sparked widespread outrage when some of the files were published online. The group behind the attack, which calls itself Radiant, had initially demanded around £600,000 ($809,700) in bitcoin and even contacted parents directly in an attempt to pressure the nursery company into paying.
Cybercriminals claim to have deleted stolen data
According to UK media reports, the hackers have now backtracked, removing the leaked material and claiming they have permanently deleted all of the stolen records. BBC News reported that the criminals did not receive any of the ransom money. One alleged member of the group told the broadcaster: “We are sorry for hurting kids.”
The move comes after intense public anger over the cyberattack, which targeted one of the UK’s largest nursery operators. The incident highlighted the growing risks of ransomware attacks on institutions handling sensitive personal data.
National Cyber Security Centre reacts
The UK’s National Cyber Security Centre (NCSC), the country’s leading cyber security authority, described the breach as “deeply distressing.” Authorities continue to investigate the incident, while Kido has yet to issue an updated public statement on the matter.
Kido’s global presence
Kido, which operates preschools worldwide, describes itself as a network founded by parents to provide early years education by combining best practices from across the globe. The chain has schools in the UK and other international locations, offering services to thousands of children and families.
This latest attack raises new concerns about the vulnerability of educational and childcare providers to cybercrime, particularly as hackers increasingly target institutions with access to sensitive data.
