Search

Pro-Iranian Hacking Group Claims Credit for Hack of FBI Director Kash Patel’s Personal Account

Cyber threats and incidents
By John Kevin Hao

Related

Cyber threats and incidents

Foxconn Confirms Cyberattack Impacting North American Factories

What happened Foxconn, the world's largest contract electronics manufacturer, confirmed...
Read more
Cyber threats and incidents

Instructure Pays Ransom to Resolve Canvas Data Breach Affecting 275 Million Users

What happened Instructure has paid a ransom to ShinyHunters, the...
Read more
Cyber threats and incidents

ShinyHunters Defaces Canvas Login Portals at 330 Schools in Escalating Extortion Campaign

What happened ShinyHunters escalated its ongoing extortion campaign against Instructure...
Read more
Cyber threats and incidents

Polish Intelligence Warns Hackers Attacked Water Treatment Control Systems

What happened Poland’s Internal Security Agency, known as the ABW,...
Read more
Cyber threats and incidents

Student Hacked Taiwan High-Speed Rail to Trigger Emergency Brakes

What happened A 23-year-old university student in Taiwan was arrested...
Read more

Share

What happened

A pro-Iranian hacking group claimed credit for hacking FBI Director Kash Patel’s personal account and said it was releasing emails and other documents tied to that account. The group, Handala, posted what appeared to be years-old photographs of Patel, along with a work résumé and other personal documents. Many of the records appeared to relate to personal travel and business activity from more than 10 years ago. A person familiar with the matter confirmed that a personal email account belonging to Patel had been breached. It was not clear when the intrusion occurred, though reports from December 2024 said Patel had been informed by the FBI that he had been targeted as part of an Iranian hack. The FBI had no immediate comment. 

Who is affected

The direct exposure involves Kash Patel and the contents of his personal account, including emails and other personal documents that Handala said it was making available for download. The article does not state how much material was accessed beyond the records and images described. 

Why CISOs should care

This incident is relevant because it involves the compromise of a personal account belonging to a senior U.S. government official and the threatened public release of materials taken from that account. It also shows how politically aligned hacking groups can use personal account access as a vehicle for exposure and public messaging. 

3 practical actions

  1. Separate personal and official risk response: Ensure executive protection plans account for the possibility that personal accounts, documents, and travel-related records may become part of a cyber incident involving senior leaders. 
  2. Prepare for public leak handling: Align security, legal, and communications teams for incidents where attackers claim they will release emails and personal documents rather than rely only on private extortion. 
  3. Treat old records as current exposure: Include legacy personal data and older account content in executive risk reviews, since the material described in this case appeared to include records from more than a decade ago. 

For more news about politically motivated intrusions targeting individuals and organizations, click Cyberattack to read more.

IMG 0514 2
+ posts

John Kevin Hao is a news and feature writer covering cybersecurity, technology, and business targeted for professional audiences.

Previous article
Female Cybersecurity Leaders to Watch in Rhode Island
Next article
HP and Dell Roll Out Quantum-Resistant Device Security and AI-Era Cyber Resilience

Subscribe to our stories

To be updated with all the latest news, offers and special announcements.