The pictures, names and addresses of around 8,000 children have been stolen from the Kido nursery chain in an extraordinary cyber attack, hackers claimed today.
Cyber criminals said they were using the details to demand a ransom for the company, which has 19 UK sites – 18 in Greater London and another in Windsor.
Kido also operates 39 nurseries in India and others in China as well as nine sites in the US – six in Houston, two in Austin and one in Chicago.
The hackers claim to have safeguarding notes and details about the children’s parents and carers – and got in touch with BBC News about their actions.
They have allegedly contacted some parents by phone and are trying to extort money from the nursery chain, which runs services for children as young as six months old.
Kido has not issued a statement on the claims, but an employee confirmed they had been told of a data breach. The Daily Mail has contacted the firm for comment.
Reacting to the attack, cyber security expert Graeme Stewart, head of public sector at Check Point Software, told the Mail today: ‘This is an absolute new low.
Details relating to around 8,000 children have been stolen from a nursery chain (stock image)
‘These attacks follow a familiar playbook: breaking in, stealing data and deploying ransomware. The use of children’s images and details takes it to a shocking level.
‘Cybercriminals are driven by money, not morals. They do not care if the collateral damage is a preschool, a hospital or a global company.
‘To deliberately put children and schools in the firing line, as we saw when the Harris Federation was taken offline, is indefensible. Frankly, it is appalling.’
Mr Stewart was referring to an incident in 2021 when a ransomware attack on the Harris Federation of schools left 37,000 pupils unable to access their email.
More to follow
