Cybercriminals who hacked UK-based Kido nursery chain have deleted the stolen data following widespread criticism. The gang, known as Radiant, had posted children's private information online but removed it after facing backlash from the cybersecurity community and fellow criminals.
A Kido spokesperson confirmed the deletion, stating: 'Throughout this incident we have followed guidance from the authorities that discourages ransom payments. We continue to work closely with families, regulators, law enforcement and our cybersecurity experts to investigate and take active steps to confirm that the data is permanently deleted.'
The BBC reported that one hacker apologised, saying: 'We are sorry for hurting kids.' Cybersecurity analysts described the hack as 'appalling' and noted that even cybercriminals condemned the targeting of children. On a Russian underground forum, a member of the Nova gang told Radiant: 'Reputation important, don't attack child right.'
Rebecca Taylor, a researcher at Sophos, said: 'Even cybercriminals know some lines can't be crossed. Radiant learned that stealing data belonging to children doesn't just attract attention, it burns credibility.' She added that deleting the data was 'damage control' rather than an act of kindness.
The BBC reported that Radiant had demanded £600,000 in bitcoin from Kido but the nursery did not pay. Despite the deletion, the gang's leak site appears ready for more victims, with a search bar and contact details via encrypted messaging.
