Hackers who tried to extort the network of the nursery by publishing stolen images and data on children in Darknet, deleted messages and claimed to delete the information.
Criminals He began to publish profiles children on their website last Thursday, adding another 10 days of children after and promise to continue Until Kido schools paid a ransom in Bitcoins.
The criminals also contacted their parents directly with threatening phone calls, trying to pay their ransom.
But the public aversion from their attack seemed to make the criminals retreat.
At first they blurred the images, but saved the data – now they took all the information in autonomous mode and apologized for their actions.
Their obvious change in the heart was met by skepticism by experts, who previously condemned the aiming of nurseries as a “new minimum” for cyberbroke.
“This is more about pragmatism than morality,” said Jen Ellis cybersecurity expert.
“These criminals are clearly shocked and concerned about how it caused their hacking, and they are trying to protect themselves or their brand.”
Hackers claim that they deleted everything that they took, that included personal data and photos of about 8,000 children, as well as contact information for parents and guardians.
“All data on subsidiaries are currently deleted. There is no longer left, and this can console parents, ”said BBC, one of the involved cybercriminals.
It is clear that Kido did not pay the hackers a ransom, which is believed to be about 600,000 pounds.
Cast cases showed that hackers often say that they deleted the stolen data and, as it was discovered, saved or sold it.
When the British National Criminal Agency Lockbit's cybercrime They found that the data was still on the servers of the criminal, who paid for the removal.
Hackers for nurseries, calling themselves shining, seem to be concerned that their hacking crossed an indefinite moral line since a public protest began against them.
“We regret that we caused pain to children,” BBC News Cybercriminals said.
It is not known who hackers or hacker, but they seem to be a new and possibly inexperienced group.
Their Darknet site is recently created, but they claim that other hacks were held in the past.
This is not the first time when cyber awakening is returning to the attack.
In 2020, a gang that uses an extortion of extortionists presented its encryption key to a German hospital after Chaos contributed to death patient of emergency care.
When CONTI hackers attacked the Irish healthcare service In 2021, they also gave an antidote for a free statement so as not to have intentionally purposeful hospitals.
A few months before, the criminals from Darkside Group made a strange decision to publish evidence that they have sacrificed some of their bad bitcoins Charitable.
Hackers for nurseries claimed that they broke into the nursery system, buying access to one of the computers of the Kido staff, which was compromised by a separate hacker.
In the general process, the “initial access broker” sold Kido access to Radiant, which continued to penetrate the Kido systems and steal data.
Most of the loaded materials, including children's pictures, were taken from the Kido account with FAMLY – a popular platform for early education.
Famly rejected the message of Kido to her parents that the violation occurred as a result of the fact that Famly was threatened.
BBC emphasized that neither security nor infrastructure of the platform were compromised at any time.
Kido did not respond to a request for comments on how hackers stole data.
The press secretary just said: “We recently identified and reacted to the cyber -informant. We work with specialists in external specialists to investigate and determine what happened in more detail.
“We quickly informed both our families and the relevant authorities and continue to contact them closely.”
Radiant claims to pay the initial access broker for access to the Kido system.
Thus, when Kido refuses to pay, and hackers refuse to try to extort, the criminals seem to have actually lost money in this cyber attack.
