Back

Iran-Linked Hackers Breach FBI Director Kash Patel's Personal Email

Severity: High (Score: 73.3)

Sources: Telegraph, Cnbc, News.Sky, Nbcnews, Standard

Summary

On March 27, 2026, the Iranian-linked hacking group Handala claimed to have breached FBI Director Kash Patel's personal email account, releasing over 300 emails and personal photographs online. The FBI confirmed the breach, stating that the information involved was historical and did not contain government data. The leaked materials date from 2010 to 2022, with many emails reflecting personal and family correspondence. Handala's attack was reportedly a retaliation for the U.S. government's seizure of its domains and a $10 million reward offered for information on its members. The group previously claimed responsibility for a cyberattack on medical tech company Stryker, indicating a pattern of targeting U.S. entities amid ongoing geopolitical tensions. Experts have noted that while the breach is significant, it primarily involves personal data rather than sensitive government information. The FBI has taken steps to mitigate risks associated with the breach. Key Points: • Handala hacked FBI Director Kash Patel's personal email, releasing over 300 emails and photos. • The FBI confirmed the breach, stating the information is historical and not government-related. • The hack is part of a broader pattern of Iranian cyber operations against U.S. officials.

Key Entities

  • Apt42 (apt_group)
  • Handala (apt_group)
  • Handala Hack Team (apt_group)
  • Data Breach (attack_type)
  • Malware (attack_type)
  • Check Point (company)
  • CIA (company)
  • Department Of Justice (company)
  • District 4 Labs (company)
  • FBI (company)
  • Canada (country)
  • China (country)
  • Cuba (country)
  • Iran (country)
  • Islamic Republic Of Iran (country)
  • Government (industry)
  • T1041 - Exfiltration Over C2 Channel (mitre_attack)
  • T1485 - Data Destruction (mitre_attack)
  • T1567.002 - Exfiltration To Cloud Storage (mitre_attack)
  • T1567 - Exfiltration Over Web Service (mitre_attack)
  • AOL (platform)
  • Telegram (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed