Iran-Linked Hackers Breach FBI Director Kash Patel's Email

Sat Mar 28 2026 11:59:43 GMT+0000 (Coordinated Universal Time)

A group known as Handala Hack Team claims to have hacked FBI Director Kash Patel's personal email, sharing personal documents and photos while taunting US cybersecurity.

The Handala Hack Team, linked to Iran, has reportedly breached FBI Director Kash Patel's personal email account, leaking purported documents and photos. The FBI confirmed awareness of the attack but stated that no government information was compromised. Offering a reward for information on the hackers, the FBI highlights ongoing security challenges for personal accounts, which are often less secure. The hack may be a response to US legal actions against the group.

The FBI has confirmed that the personal email account of its Director, Kash Patel, has fallen prey to hacking by an Iran-linked group known as the Handala Hack Team.

On Friday, the group made headlines by posting Patel's alleged resume and a collection of personal photos on their website, declaring, This is just our beginning. In response to the breach, the FBI declared its awareness of malicious actors targeting Patel's email, clarifying that the compromised information is historical and contains no official government data.

In light of the incident, the FBI has offered a reward of up to $10 million for information leading to the identification of Handala’s members.

This is not the first time Patel has been targeted by Iranian-backed hackers. Reports indicate he was previously compromised in 2024, prior to taking office, but it is unclear if this latest breach is a continuation of that event.

Photos purportedly taken from Patel's account feature him in various social settings, including images where he is seen next to a vintage convertible, at a jet, and in restaurants, all watermarked with Handala’s logo.

While the authenticity of the leaked documents remains unverified, the cybersecurity community has expressed concern. Cynthia Kaiser from the Halcyon Ransomware Research Center suggested these materials may originate from a historical breach, stating, The emails look very old and that makes me believe that this is likely a compromise that occurred from other groups in another time period, and is recycled today.

The Handala groups' statement emphasized their intent, claiming the FBI's defensive measures were easily breached. They criticized US cybersecurity efforts, stating, This is the security that the US government boasts about?! Experts suggest that attacks like these may not require significant technical expertise, as personal email accounts typically lack the robust protections of official government systems.

The incident unfolds against a backdrop of increased scrutiny on Handala; last week, the US Justice Department seized several of their domain names linked to previous hacking schemes. The group itself has claimed that this attack was motivated by the FBI's legal actions against them and the ongoing threats to their operations.

Earlier this month, Handala had previously claimed responsibility for a cyber-attack on Stryker, a US medical technology firm, which they reported involved extensive data loss and system wipe operations. The group has framed its actions as retaliatory measures in response to aggressions against Iran.