Pro-Iran group claims credit for FBI chief Kash Patel account hack
A pro-Iranian hacking group named "Handala" has declared it hacked an account belonging to FBI Director Kash Patel, posting his years-old photographs, resume, and other personal documents online. This alleged breach raises significant concerns about cybersecurity and international espionage.
On March 27, 2026, a pro-Iranian hacking group called Handala claimed responsibility for hacking FBI Director Kash Patel's personal Gmail account. The group posted years-old personal documents online, including photographs, a resume, travel receipts from 2012-2019, family communications, tax filing information, and apartment leasing details from a decade ago. The FBI confirmed the breach but emphasized that the compromised information was historical personal data with no government information involved. The agency stated it was aware of malicious actors targeting Director Patel's personal email information and had taken all necessary steps to mitigate potential risks.
Handala, which serves as a proxy for Iranian cyber operations, framed the hack as retaliation against recent U.S. government actions. The Justice Department had seized four web domains linked to Iranian hacking schemes the previous week, and the Trump administration had announced a $10 million reward for information leading to the identification of Handala members. In a statement, Handala referenced the FBI's domain seizures and reward, stating they chose to retaliate against what they called an "absurd display."
The timing of the breach remains unclear, and the FBI noted that groups like Handala are often known for inflating the extent of their hacks. This incident occurred against the backdrop of broader U.S.-Iran cyber tensions, with Handala having previously claimed responsibility for disrupting systems at Stryker, a Michigan-based medical technology company, earlier in March 2026. That attack was reportedly in retaliation for suspected U.S. strikes that killed children at a school in Iran.
News reports from December 2024 indicated that Patel had previously been informed he was targeted as part of an Iranian hack. The FBI's confirmation of the targeting came hours after Handala's public claim, with the agency maintaining that the compromised materials were purely personal and historical in nature. The incident highlights ongoing cybersecurity challenges facing high-profile government officials and the persistent threat posed by state-sponsored hacking groups operating through proxy organizations.
Join the discussion
What do you think? Drop your thoughts below.