Teen and Man Arrested Over Nursery Cyber Attack Exposing 8,000 Children

Published: 08 October 2025. The English Chronicle Online.

A 17-year-old teenager and a 22-year-old man have been arrested in connection with a high-profile cyber attack that compromised sensitive information belonging to approximately 8,000 children at the London-based nursery chain, Kido. The Metropolitan Police confirmed that the suspects were detained in Bishop’s Stortford, Hertfordshire, on suspicion of computer misuse and blackmail. Both remain in custody as investigations continue, with authorities working to determine the full extent of the breach and whether others were involved.

The cyber attack, which targeted Kido’s 18 nurseries across London and the surrounding areas, involved the theft of highly sensitive personal information. The stolen data included the names, addresses, and photographs of children attending the nurseries, alongside contact information for their parents. The breach, which was first publicly revealed last week, sent shockwaves through parents and staff, raising urgent questions about cybersecurity practices in childcare and education institutions.

The group behind the attack, a cybercriminal gang known as Radiant, initially posted the stolen data on the dark web, issuing an explicit ransom demand to Kido in bitcoin. The hackers warned that unless their demands were met, the information would continue to be exposed publicly. The attempted extortion triggered an immediate backlash, with concerned parents, cybersecurity experts, and the general public condemning the exploitation of vulnerable children for financial gain.

Following intense scrutiny and public outcry, Radiant deleted all stolen data and issued an apology. “All child data is now being deleted. No more remains, and this can comfort parents,” a member of the group told the BBC. In a further statement, the hackers said, “We are sorry for hurting kids,” acknowledging the distress caused to families and nursery staff. The nursery chain reportedly refused to pay the ransom, estimated at around £100,000, following advice from law enforcement, which consistently warns against yielding to cybercriminals as this can further fuel criminal activity.

Experts have highlighted that cyber attacks targeting educational settings are increasingly common and can have devastating consequences, both emotionally and financially. Elliott Lewis, chief information security officer at ParentPay Group, warned that the Kido incident reflects wider systemic vulnerabilities within schools and nurseries. “Cyber attacks on schools and nurseries remain alarmingly common, with ransomware incidents still occurring weekly. Frustratingly, the causes haven’t changed – phishing, poor patching, and insecure personal devices are still the main culprits,” he said.

Lewis further emphasised the psychological and emotional toll of breaches involving children. “When images and sensitive information about children are compromised, the emotional impact on families and staff is profound. It’s a stark reminder of how educational settings are being targeted not just because of their data, but because of their vulnerability. These are environments where cybersecurity awareness has often lagged behind other sectors, and the consequences of attacks are far more sensitive.”

Kido operates nurseries across several London boroughs, including Waterloo, Clerkenwell, Chiswick, and Fulham. The nurseries are among the most expensive in the capital, with full-time fees reaching up to £2,472 per month, surpassing average private school tuition. The high fees, coupled with the collection of detailed personal data for administrative purposes, make these institutions both attractive and vulnerable targets for cybercriminals seeking financial gain.

The attack has also raised questions about how childcare providers handle sensitive data and whether current cybersecurity measures are sufficient to protect children in private educational settings. Experts argue that institutions handling such data must implement robust systems, including regular software updates, secure storage practices, multi-factor authentication, and employee training on phishing and other cyber threats. The Kido breach serves as a wake-up call for childcare institutions to reassess and strengthen their digital security infrastructure.

This incident is part of a growing trend of cyber attacks in the UK and internationally, which have increasingly targeted high-profile businesses and sensitive institutions. Recent examples include a ransomware attack on Jaguar Land Rover, which resulted in a temporary halt in vehicle production, and a major data breach at Marks & Spencer, which reportedly cost the retailer around £300 million. Analysts warn that cybercrime is evolving rapidly, with hackers employing increasingly sophisticated methods, often exploiting human error or outdated technology to gain access to sensitive information.

Parents affected by the Kido breach have expressed anger and concern over the potential misuse of their children’s personal data. Many families have questioned whether the nursery chain could have done more to prevent the attack and called for greater accountability from private educational providers. Cybersecurity experts note that while no system can be completely immune from attack, proactive measures, including regular audits, secure cloud storage, and rapid incident response plans, can significantly reduce the risks and mitigate harm when breaches occur.

In response to the incident, the Metropolitan Police launched an immediate investigation, prioritising the identification and arrest of the perpetrators. The two arrests in Hertfordshire mark a significant development in the case, but authorities caution that investigations are ongoing and further suspects could be identified. Law enforcement agencies also continue to work with cybersecurity experts to ensure that any remaining data is fully secured and that victims are provided with guidance on protecting their personal information from misuse.

The Kido cyber attack has renewed discussions about the importance of cyber resilience in educational institutions, particularly those handling vulnerable populations. While government guidance and regulations exist for data protection, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, incidents like this highlight gaps in implementation, training, and resources at the institutional level. Cybersecurity specialists stress that organizations must treat digital safety with the same seriousness as physical security to prevent future incidents.

As parents, educators, and authorities grapple with the implications of this breach, the broader issue of cybercrime remains a pressing concern. The rise of ransomware, phishing, and other cyber threats demonstrates the need for a coordinated approach involving law enforcement, technology providers, and organizations that hold sensitive data. Experts have emphasised that education, vigilance, and investment in cybersecurity infrastructure are essential to protecting both personal information and institutional integrity.

For Kido, the incident has caused significant reputational damage, with families voicing concern over the safety of their children’s data and the potential consequences of its misuse. The nursery chain has pledged to strengthen its cybersecurity measures, conduct thorough audits, and work closely with authorities to prevent similar incidents from occurring in the future. Meanwhile, the arrests mark a step forward in holding perpetrators accountable and serve as a warning to others who may attempt to exploit vulnerable institutions.

Ultimately, the Kido breach underscores the growing risks of cybercrime in sectors that handle sensitive information, particularly where children are involved. As digital systems become more integral to educational administration, the importance of robust, proactive cybersecurity measures cannot be overstated. The incident serves as a stark reminder of the responsibilities organizations have to protect the personal data entrusted to them and the consequences of failing to do so.

Related News:

Tasers Introduced in UK Prisons to Combat Rising Violence and Protect Staff UK Government Unveils Tough Crackdown on Social Media Ads Promoting Illegal Channel Crossings Mind the Grab’: Bold Campaign Launched on Oxford Street to Combat Phone Theft Police Prepare for Potential Disorder as Far-Right Groups Promote Anti-Migrant Protests Across England Mass Arrests in London as Protest Defies Ban on Palestine Action Police Advised to Disclose Ethnicity of Suspects in High-Profile Cases UK police plans to reveal suspects’ ethnicity spark fears of “dog-whistle politics” UK Police Face ‘Chronic Pressure’ Amid Surge in Protests Over Asylum and Gaza Graffiti Targeting Angela Rayner Removed After Resident Foots the Bill Peter Mandelson Referred to Jeffrey Epstein as ‘My Best Pal’ in 50th Birthday Letter Peter Mandelson’s Letter to Jeffrey Epstein Sparks Renewed Scrutiny Charlie Kirk Killing Used to Mobilise UK’s Largest Far-Right Rally in Decades Donald Trump’s UK State Visit Kicks Off Amid Major Tech Investments and Business Engagements Ed Davey Urges UK to Attract US Cancer Scientists Amid Funding Cuts Under Trump Digital ID Cards: A Useful Modern Tool or a Threat to Privacy and Security? UK Fighter Jet Purchase Could Breach Nuclear Treaty, Warns CND Far-Right Facebook Groups Fuel Radicalisation in the UK, Investigation Reveals Metropolitan Police Considers Requiring Officers to Declare Freemasonry Membership Russia repeatedly targets UK military satellites, warns Space Command chief UK Police to Gain New Powers to Manage Repeated Protests, Home Office Announces Stephen Lawrence’s Father Demands Justice Before Killer’s Parole Starmer Condemns 7 October Student Protests as ‘Un-British’ Cooper Unveils £4m Cyber Plan Against Russian Hackers Yvette Cooper Backs Digital ID Plan for UK Teens UK Charities Warn Rising Hate Threatens Staff Safety Agnes Wanjiru’s niece urges Labour to expedite ex-soldier’s extradition UK to Test Digital ID Scheme with Veteran Card Southport rioter dies in cell after prison disciplinary charge Starmer’s grooming gang inquiry in turmoil after two survivors quit Reform UK candidate fined £19,000 after using AI-generated cases to challenge election Starmer Defends Digital ID Plan Amid Growing Criticism Reform Councillor Defects to Tories Over ‘Uncomfortable’ Policies FBI Director Kash Patel Defends Girlfriend Amid Government Jet Claims French Taxi Driver Cleared in David Lammy Theft Case After Fare Dispute UK Bans Fake Numbers: Scammers Lose Their Trick Company linked to Michelle Mone owes £39m in tax Met Police Culture Makes Racial Harm ‘Inevitable’ Eleven Arrested After Pro-Palestine Protest at Villa Match ‘Reckless’ cuts to victims’ services will cost more than they save British state supplied victims to ‘worst sex offender in history’ New review urges UK to repatriate Shamima Begum, others from Syria Victims’ commissioner Baroness Newlove dies aged 63 UK Candidate Moved to Safe House After Election Threats Ex-Classmate Accuses Farage of Dishonesty on Racism Claims Ex-Brexit MEP Rejects Claim of Pro-Russia Payments UK Must Act with Courage and Clarity on Israel-Palestine Conflict, Says Foreign Affairs Committee Report Targeted Attack in Bury Sparks Murder Investigation as Community Awaits Justice Chancellor Faces Mounting Pressure Amid “Impossible Trilemma” Over Tax Rises Radioactive Leak at UK’s Nuclear Warhead Base Sparks Outcry Over Safety and Secrecy Mutual Inconvenience: Why Alaska Was Chosen for the Trump-Putin Summit on Ukraine Chancellor Rachel Reeves Pushes for Sweeping Changes to Environmental Protections to Accelerate Development Merseyside Police Helicopter Crew Cleared After Low-Altitude Pursuit of Suspect Is the UK Ready to Put Boots on the Ground in Ukraine? Assessing Military Capacity and Challenges Police Scotland Spends £500,000 Compensating Officers Over Trump Visit Urgent Action Needed on Windrush Compensation as Survivors Speak of “Waiting to Die” Tanni Grey-Thompson Faces Abuse Over Opposition to Assisted Dying Bill TfL Invites RMT to Resume Talks as London Tube Strikes End Nigel Farage Unveils Controversial Immigration and Welfare Plans at Reform UK Press Conference Ed Miliband Warns UK Government on X, Citing Elon Musk as a “Dangerous Influence” No Evidence Found to Substantiate Alleged Rape in Oxfordshire Churchyard, Police Confirm Kemi Badenoch Unveils ‘Golden Rule’ to Halve Spending Cuts for Deficit Reduction at Tory Conference Public Trust in SNP Hits Historic Low Amid NHS Concerns Ian Watkins Killed in Prison; Ex-Girlfriend Speaks Out Johnson Suggests Mandelson Linked to China Spy Controversy Ministry of Justice fails to file £11bn in spending receipts Rachel Reeves signals welfare reform ahead of key budget Harry and Meghan join global AI leaders urging superintelligence ban William Steps Up Over Prince Andrew Palace Response Experts Warn Russia’s Burevestnik Missile Could Destabilise Arms Control Green Party Surges Past Labour in Latest UK Poll Zarah Sultana Launches Party to Change Politics Just Stop Oil Protesters Convicted Amid Climate Defence Row How to get help when a child goes missing – call 999 urgently Starmer Faces Growing Dissent as Labour MPs Weigh Leadership Challenge Valve Opens the Door for Android Games on Steam Peers Flood Assisted Dying Bill with 942 Amendments Mother Watches in Horror as Teen Daughter Dies on Tracks Serial Rapist and Former Cop Found Guilty Again Venezuela Threatens Nobel Winner Machado with Fugitive Status Most Tories Expect to Support a Farage-Led Government