The FBI has confirmed that FBI Director Kash Patel's personal email account has been hacked by an Iran-linked group.
A group, known as the Handala Hack Team, shared Patel's purported resume and photos on its website alongside a statement claiming, This is just our beginning. The FBI acknowledged that it was aware of malicious actors targeting Patel's email, asserting that the compromise involves historical information and does not include government data.
The agency is currently offering up to $10 million (£7.5 million) for information leading to the identification of members of the Handala group.
Reports indicate that Iranian-backed hackers breached Patel's private communications in 2024, prior to his FBI appointment, although it remains unclear if this latest breach is related. Handala's claims include leaking photos of Patel in various social settings, which have reportedly circulated on social media with the group's watermark.
Experts believe this hack exemplifies the challenges of securing personal accounts, which lack the robust protections that government systems have. As noted by cybersecurity analysts, personal accounts are attractive targets for hackers due to their simpler security measures.
In a retaliatory statement, Handala proclaimed their capability to breach supposed high-security systems, mocking the FBI's security claims. This incident occurs amidst a broader crackdown on Handala, with the U.S. Justice Department recently seizing several domain names attributed to the group.
Handala also previously claimed a cyber-attack on U.S. medical technology firm Stryker, illustrating their ongoing hostilities against U.S. entities, often framing their actions as resistance against perceived aggression.
