Iran-linked hackers have claimed responsibility for breaching FBI Director Kash Patel’s personal Gmail inbox, leaking photographs, documents, and email correspondence online.
The hacker group Handala Hack Team announced the breach on their website, declaring that Patel “will now find his name among the list of successfully hacked victims.”
The leaked materials, totaling approximately 800 megabytes, include personal photographs, Patel’s purported resume, and hundreds of emails primarily spanning from 2010 to 2019.
A Justice Department official confirmed to Reuters that Patel’s emails had indeed been compromised and that the published material appeared to be authentic. The FBI did not immediately respond to requests for comment.
Who Is Handala Hack Team?
Handala describes itself as a pro-Palestinian vigilante hacking group and is believed by Western cybersecurity researchers to be one of several online personas operated by Iranian government cyberintelligence units.
The group’s announcement mocked U.S. security infrastructure, writing: “Today, once again, the world witnessed the collapse of America’s so-called security legends.” Handala also issued a chilling warning: “If your director can be compromised this easily, what do you expect from your lower-level employees?”
The hack appears to be a direct response to prior U.S. government action against Handala. The U.S. government had previously seized the group’s web domains following a cyberattack that disrupted systems at Stryker, a major U.S. medical equipment company, for approximately one week.
The U.S. also announced a $10 million bounty for information on Handala’s members. The group relocated its operations to a new domain hosted under the .to top-level domain of Tonga, a South Pacific island nation, to evade takedowns.
The incident raises serious concerns about the cybersecurity hygiene of senior U.S. officials who may use personal email accounts for professional communications a vulnerability that threat actors continue to exploit
Handala’s attack underscores the persistent and evolving threat posed by Iranian-linked cyber actors, who have increasingly targeted high-profile U.S. government figures in recent years.
Follow us on Google News, LinkedIn, and X for daily cybersecurity updates. Contact us to feature your stories.
