London nurseries hit by cyber attack prompts arrests
A teenager and a man have been taken into custody following reports of a cyber attack aimed at a London-based chain of nurseries. The arrests were made on suspicion of computer misuse and blackmail, as investigators pursue those responsible for the breach that exposed sensitive information belonging to children, parents, and carers.
What happened and who’s affected
The incident is linked to the Kido nursery chain, which operates multiple facilities in and around London. Authorities say the hackers used profiles, including pictures and names of around 8,000 children, to demand ransom money. Personal contact details for children and their families were also reported to have been accessed two weeks prior to the arrests, heightening concerns about the safety and privacy of young clients and their parents.
Arrests and police response
The Metropolitan Police carried out operations at several properties in Bishop’s Stortford, Hertfordshire, on Tuesday, resulting in the detention of a 17-year-old and a 22-year-old man. Both remain in custody for questioning as detectives from the force’s economic and cyber crime unit continue their inquiries.
Officials’ response and ongoing investigations
Will Lyne, head of economic and cyber crime at the Met Police, said investigators are working “at pace” to uncover the full extent of the breach. He stressed that the force understands the concern such incidents provoke and reassured the public that every effort is being made to support those affected and to bring those responsible to justice.
Impact on families and safeguards
Parents and carers associated with the Kido nurseries have faced disruption and anxiety as the breach unfolded. Police guidance to affected families emphasizes the importance of monitoring for suspicious activity and safeguarding personal information. The Met Police reiterates that it will not tolerate cyber-enabled abuse and will pursue suspects wherever the evidence leads.
The wider cybercrime context
Hybrid threats involving extortion and personal data exposure are a growing concern for education networks and childcare providers. The alleged hackers, a group calling itself Radiant, had claimed responsibility for the attack. In a later twist, the group reportedly deleted data from a website that had been set up to extort victims after facing backlash for targeting children, according to reports from Sky News and The Guardian. As investigations continue, authorities are urging vigilance and cooperation from the public to deter future incidents.
What comes next
Officials indicate that the investigation will extend beyond the initial arrests, with further steps likely to include examination of digital footprints, data seizure, and collaboration with cybersecurity experts. The priority remains protecting vulnerable children and families while ensuring accountability for cybercriminals.
