London nurseries hit by cyber attack sparks criminal investigations
A teenager and a 22-year-old man have been arrested in connection with a cyber attack targeting a chain of London-based nurseries. The arrests were confirmed by police after officers conducted a series of early-morning operations at multiple properties in Bishop’s Stortford, Hertfordshire, on Tuesday.
Law enforcement officials said both suspects were taken into custody on suspicion of computer misuse and blackmail. They remain in custody for questioning as investigators pursue a detailed line of inquiry into the data breach and alleged extortion linked to the incident.
What happened and who was affected?
Hackers are accused of exploiting the personal information of around 8,000 children who attend the Kido nursery chain. The stolen data reportedly included children
€™s names and photographs, with ransom demands tied to this information. The attack also reportedly targeted the contact details of parents and carers, heightening concerns for families connected to the nurseries.
The FBI-style terminology used by law enforcement underscores the seriousness of the alleged crime: criminal groups are known to threaten to publish or misuse sensitive information to coerce payments. In this case, UK authorities say the information was used to pressure the chain and its families into paying a sum to prevent further disclosure.
Police response and ongoing investigation
The Metropolitan Police confirmed the arrests and stated that the investigation is moving forward at pace. Will Lyne, who heads the Met Police’s Economic and Cyber Crime unit, emphasized that specialist investigators have been working tirelessly since the report emerged. He added that the force understands the anxiety such breaches can cause for parents and carers and pledged continued cooperation with partners to bring those responsible to justice.
Officers involved in the operation emphasized a methodical approach, working to secure digital evidence, trace communications, and identify any accomplices who may have aided the attack. The authorities have not released specific details about how the hack was carried out, but they have stressed that data was accessed and misused in a manner consistent with extortion strategies observed in similar incidents.
What this means for families and the wider community
Security experts warn that cyber attacks on nurseries can cause lasting distress beyond immediate financial threats. Parents and carers may worry about future breaches, the handling of their children
€™s information, and potential reputational damage to institutions that care for young children. In response, the Met Police has urged vigilance and encouraged anyone with information to contact authorities, while reiterating that investigations will take time to ensure there is a robust case for prosecution.
Experts also highlight the importance of clear data protection practices within childcare networks. Regular audits, prompt patching of software, robust access controls, and clear incident response plans are crucial to mitigating similar threats in the future.
Background on the group behind the claim
A hacking collective that identified itself as Radiant previously claimed responsibility for the breach, threatening to release more profiles. Reports suggest the group later removed the data from a dedicated site after facing backlash for targeting young children. The Guardian noted this retreat as part of a broader pattern where extortion operations are abandoned when public backlash intensifies, but the investigation continues to identify responsible individuals.
What parents and guardians should do now
Families affected by the incident should monitor communications from the nursery for updates, review any accounts linked to the service for unusual activity, and report suspicious messages or requests for payment to authorities. The police have underscored that no detail is too small when tracing the perpetrators and securing the safety of children and their families.
